Voter Pre-Enrollment Service Launched on Nagarik App
Starting October 17 at 11:59 PM, citizens can now complete voter
pre-enrollment through the Nagarik App, simplifying the registration process digitally. Users can select their district election office and fill out a pre-enrollment form via the app’s latest version (v2.0.84).
The Election Commission continues updating the voter list for the House of Representatives election on March 5, 2026. After online submission, applicants must visit their designated election office for photo and biometric verification. Those already registered do not need to reapply.
Hacker Claims Breach of 16,000 WiFi Hotspots Across Nepal
A hacker using the alias “NovaFire” (@DarForums) has claimed to have breached over 16,000 WiFi hotspot dashboards across Nepal and is selling access for $30 in Bitcoin or Monero. The post indicates that 7,472 hotspots were online and 9,244 offline at the time of writing.
The hacker claims that buyers can access device details, usage data, hotspot locations, and even reboot or upgrade firmware. Shared screenshots reveal data from thousands of devices, though certain sensitive fields such as Cloud Name, Owner, and Payment Plan have been hidden.
Cybersecurity experts noted that the breach likely resulted from default passwords or unpatched vulnerabilities in public WiFi access points or ISP systems. They confirmed the screenshots appear authentic and suggested that the absence of two-factor authentication could explain why the data is being sold cheaply.
Experts further emphasized that ISPs, not individual users, bear the primary responsibility for such incidents, as most routers are managed directly by providers. The affected ISP or region has yet to be identified, leaving users unable to take preventive measures.
Nepal Rastra Bank Updates Guidelines to Tackle AI-Driven Financial Crimes
The Nepal Rastra Bank (NRB) has identified the growing risks of financial crimes linked to Artificial Intelligence (AI) and emerging technologies as a major challenge. In response, its Financial Information Unit has updated the guidelines on suspicious transactions and activities, introducing a new category focused on AI and technology-related threats.
The updated guidelines highlight digital identity theft, deepfake KYC documents, and bot-based or automated transactions as red flags for money laundering, terrorist financing, and fraud. The use of AI apps, Telegram bots, APIs, or tools like VPNs and spoofed IMEIs to conceal identities is now considered suspicious—especially when tied to gambling, betting, or crypto activities.
AI-generated scams such as fake loan offers, voice synthesis fraud, and AI-based pyramid schemes have also been flagged. The NRB urges close monitoring of unregistered crowdfunding portals, P2P lending platforms, and virtual asset transactions, particularly those involving P2P crypto exchanges or wallets linked to gambling sites like 1xBet or Metabet. Recognizing gaps in technological capacity among financial institutions, NRB stresses the need for investment in advanced analytics, AI, and machine learning tools to detect anomalies and complex layering techniques more effectively.
Phishing Scam Offering “60GB Free Data” Circulates During Tihar
During the Tihar festival, phishing links falsely claiming that WorldLink, Nepal Telecom, and Ncell were offering 60GB of free data were widely circulated online. The fake link, “jveox.site,” redirected users to suspicious websites and automatically forwarded itself to their Facebook friends and WhatsApp contacts, tricking others into believing it was shared by a trusted person. Although the link is currently down, it is believed to have already affected many users.
Experts warn that clicking such links can expose users to data theft, malware infections, or unwanted subscriptions. To stay safe, users are advised not to click on suspicious links or believe messages that promise free data or rewards. It is important to verify any offers only through official company websites or verified social media pages and to avoid entering personal information such as mobile numbers or OTP codes on unverified sites. People are also encouraged to inform their friends and family about such scams to help prevent their spread.
