Nadra, provider of solutions for identification, e-governance and secure documents that deliver multi-pronged goals of mitigating identity theft, has been affected by an information security incident.

The issuing of forged sims on biometric verification appeared to be the case in the core of the incident.

During further investigation it was reported that the data wasn’t hacked, but the biometric system was disrupted and misused influencing the process of sim verification.

The version of some employee working at Nadra who could have put up the data for sale on the dark web is quite possible anyway.

The dark web in Pakistan is regarded as a poorly regulated place which can be easily accessed via VPN, and the information uploaded to it becomes a popular tool in the hands of hackers, extortionists and other fraudsters.