The Independent National Electoral Commission (INEC) has disclosed that one of its officials with authorised access to the Continuous Voter Registration (CVR) database is under investigation over the unauthorised release of a voter record belonging to a candidate who participated in a recent political party primary election in the Federal Capital Territory (FCT).
The commission made this known on Tuesday through a statement issued by the National Commissioner and Chairman of the Information and Voter Education Committee, Mohammed Kudu Haruna, following widespread allegations on social media and in sections of the media suggesting that INEC’s voter registration database had been compromised.
INEC clarified that its preliminary investigation does not indicate any external attack on its system. According to the commission, an internal audit revealed that there was no evidence of hacking, cyber intrusion, or any unauthorised external access to its information technology infrastructure.
Instead, the commission explained that the voter information in question was obtained through legitimate login credentials assigned to personnel currently involved in the nationwide Continuous Voter Registration exercise. However, the information was allegedly disclosed without official approval.
Haruna stated that registration officers participating in the ongoing CVR process were granted restricted access to certain components of the voter registration database solely for official activities, including registering new voters, processing transfer requests, and updating voter information. He stressed that such access is limited to official assignments and can be withdrawn immediately once the exercise concludes.
According to the commission, its audit trail system successfully traced the retrieval of the voter record to a specific user account, allowing investigators to identify the personnel connected to the incident.
INEC disclosed that the relevant staff member has already been questioned as part of the ongoing inquiry. The commission further stated that all departments and personnel linked to the matter are fully cooperating with investigators.
The electoral body said it is conducting a comprehensive review of the incident, examining technical, administrative, and operational aspects to determine how the information was released and whether established access-control protocols were breached.
Addressing public concerns about the security of voter data, INEC maintained that the incident involved only a single voter record and did not affect the wider voter registration database. The commission reassured Nigerians that the personal information of more than 90 million registered voters remains secure and protected.
INEC emphasised that the integrity and reliability of its voter registration infrastructure remain intact, adding that there is currently no indication of a broader compromise of its systems.
The commission also revealed that the Department of State Services (DSS) has initiated a separate investigation into the matter. According to INEC, the security agency commenced its inquiry independently and is conducting its own assessment of the circumstances surrounding the unauthorised disclosure.
Haruna noted that INEC would continue to cooperate fully with the DSS and other relevant security agencies to ensure a thorough investigation.
He further warned that any individual found responsible for violating the commission’s rules or unlawfully disclosing voter information would face appropriate legal consequences. The commission said any staff member determined to be culpable would be handed over for prosecution in accordance with the law.
INEC urged members of the public, political stakeholders, and media organisations to avoid speculation while investigations are ongoing. The commission stressed the importance of allowing investigators to complete their work before drawing conclusions about the incident.
The electoral body also pledged to make its findings public once the investigation is concluded. It said Nigerians would be informed of the outcome of the inquiry, including any disciplinary measures, reforms, or additional safeguards introduced to prevent similar incidents in the future.
The development comes amid increasing public attention on electoral integrity, data security, and the protection of voter information as political activities continue to gather momentum ahead of future elections.
