CAC Reassures Public: Corporate Database Remains Secure After Recent Cyber Incident

The Corporate Affairs Commission (CAC) has issued a detailed response to clarify the state of Nigeria’s national corporate registry following a recent “cyber incident.” Despite widespread rumors of a major data breach, the Commission insists that its records remain fully intact and that no unauthorized changes were made to company information.

In mid-April 2026, the CAC’s digital infrastructure was targeted in an unauthorized access attempt. To protect the registry, the Commission temporarily deactivated its online portal for three days. During this time, technical teams worked to block the intrusion and patch vulnerabilities in the system.

While the outage caused delays for business owners and legal practitioners, the CAC maintains that this was a necessary “containment measure” to prevent hackers from reaching the core database where sensitive corporate records are stored.

In a formal statement released on April 29, 2026, the Commission addressed growing public anxiety regarding the integrity of its data. The CAC stated categorically that “computer records remain secure.” They debunked The Commission specifically cleared the air regarding high-profile companies, noting that any internal disputes or registry issues being discussed in the media were pre-existing legal matters and not the result of the cyber attack. Working alongside the National Information Technology Development Agency (NITDA), the CAC has since implemented multi-layered security protocols to ensure that such an intrusion does not happen again.

While the CAC is confident in its recovery, the Nigeria Data Protection Commission (NDPC) has stepped in to conduct an independent audit. This investigation will look into exactly how the systems were accessed and whether any personal identification data—such as NINs or digital signatures—could have been viewed, even if they weren’t changed.

This incident has sparked a larger conversation about the resilience of Nigeria’s digital governance. As the country moves toward a fully paperless system for business registration and land digitization, the security of these central databases has become a matter of national economic importance.

Safety Steps for Business Owners

The Commission is encouraging all stakeholders to remain vigilant while they continue to monitor the situation. If you manage a business or use the portal for professional services, consider the following:

• Verify Your Records: Log in to the CAC Companies Registration Portal and perform a status check on your registered entities.

• Reset Credentials: It is standard security practice to update your portal password and ensure your contact email is current.

• Stay Informed: For official updates and public notices, you can visit the Official CAC Website.

The incident underscores the growing pressure on Nigeria’s digital infrastructure as the “Deep Tech” and fintech sectors continue to expand, making government databases high-value targets for regional and international cyber-actors.

The CAC’s ability to withstand this incident without a total data loss is a positive sign for the agency’s technical growth. However, it serves as a reminder that as Nigeria’s tech ecosystem matures, the systems supporting it must remain one step ahead of increasingly sophisticated cyber threats.