Hacker allegedly steals over 3 million National Identity Numbers of Nigerians from NIMC server

A hacker has said that he gained access into the server of the National Identity Management Commission and retrieved over three million National Identity Numbers of Nigerians.

He revealed how easy it was for him to breach the NIMC server and access personal information of millions of Nigerians in an article he shared on infosecwriteups.com.

According to the hacker known as Sam, he broke into NIMC’s server and has vital, and he could go ahead to do whatever he desired with other sensitive data at his disposal.

Displaying a defaced National Identity card of a Nigerian alongside the article, the hacker said, “I’ve got one more output for s3 bucket, I casually tried to access it without any hope, and damn! The s3 bucket is full of juice.

“I just simply got access to their (Nigeria) data of internal files, users and everything they have. I can download everything, even the whole bucket. I am sure that the bucket is full of juice.

“I wanted to look at more files but as we have to follow bug bounty rules I stopped doing more.

“I’ve got one more s3 bucket with nuclei and it also contained about 4–5 gigs of data.

“I’ve rewarded 5250$ for only one report and 0$ for the second one even it contained so much sensitive data,” the hacker wrote in the article that has continued to generate reactions from some Nigerians on social media especially tech enthusiasts.

The latest cyber attack comes less than two months after the Nigerian Communications Commission, NCC issued a warning that an Iranian hacking group was planning to carry out cyber espionage across Africa.