The National Database and Registration Authority (NADRA) has strongly rejected social media claims alleging a large-scale data breach involving citizens’ CNIC numbers, photographs, and biometric information being sold on the dark web.
The authority clarified that the allegations circulating online are false and unsubstantiated. It noted that even the original post making the claim admitted there was no verified evidence of any breach.
According to NADRA, similar rumors also emerged in 2024, which were thoroughly investigated in coordination with the National Computer Emergency Response Team (National CERT Pakistan) and the National Telecommunications and Information Security Board (NTISB). Both investigations found no evidence of any system compromise or unauthorized access.
NADRA also dismissed circulating sample images as fake, stating they do not match its official data formats and have previously appeared in unrelated online posts.
The authority emphasized that no citizen data has been stolen or compromised, and no security breach has occurred. However, it added that it will continue monitoring such claims in collaboration with national cybersecurity agencies.




