Somchai, together with two IT specialists, submitted evidence of a leak of voter list data to the Ombudsman, requesting it be sent to the Constitutional Court for consideration in the barcode case, alleging it caused the election to lose confidentiality.
At 10:00 a.m. on 9 April 2026 at the Election Commission (EC) office, Somchai Srisutthiyakorn, former EC commissioner, along with Thamthee Sukchotirat, director of DeeVote at Sripatum University, and Thanarat Kuwattanapan, CEO of Domecloud and blockchain technology expert, jointly announced that they had submitted new evidence in the barcode case on election ballots. They asked the Ombudsman to present this evidence to the Constitutional Court for case consideration and requested the EC to investigate a leak of the voter list data, which could compromise the confidentiality of the 8 February 2026 election results under the constitution.
Somchai said today they submitted the matter to the EC because they were alarmed by the leak of voter list data of 53 million people. This is a critical dataset used to verify which eligible voter selected whom. The EC has always maintained that the three key data types—ballots cast, ballot stubs, and voter lists—are stored separately and securely, making leaks impossible. However, now the 53 million voter records under the Department of Provincial Administration’s custody have leaked, compromising the confidentiality of the 8 February 2026 election.
Thanarat explained that the voter list data leak occurred on 13 February 2026, but at that time they had no confirmed evidence of a system breach. It was only last week that they detected an intrusion into the Department of Provincial Administration’s system, where 52.9 million voter records were stolen and sold on the black market along with code to hack the voter registration system, priced at 200 baht. They have solid evidence and submitted it to the Ombudsman to present to the Constitutional Court to support the barcode ballot case.
The voter list data is normally inaccessible to the public, but now anyone can access it, and it has been sold on the black market for some time. The leak originated from the Department of Provincial Administration’s voter verification system and persisted for over three weeks until the department fixed it on 14 February 2026.
Thamthee confirmed that their investigation found the leaked voter list data has been used continuously from before the election until its conclusion in 2026. When combined with QR code and barcode data on ballots collected by numerous media outlets, they also discovered a leak of numbered voter sequence papers. These papers, recorded by precinct election officials to facilitate issuing ballots, act like ballot stubs. If someone matches the numbers on these papers with the QR/barcodes on ballots and the leaked voter list data sold on the black market, they can immediately identify how a particular voter cast their vote.
“According to EC regulations, these numbered papers and metal clips are categorized as general materials, like pens and tape—common items often overlooked and not securely stored. Therefore, if someone takes these numbered papers, it raises the question: if criminals exploit them, it would harm the 53 million eligible voters. We have reported this to the EC, urging them to investigate the whereabouts and completeness of these numbered papers and metal clips to prevent the 8 February 2026 election from losing confidentiality again.”