Manny Ita –
A growing wave of cyberattacks is raising serious concerns about the security of digital platforms in Nigeria, with experts warning that many government websites have not undergone proper security testing before deployment.
Cyber threats in the country have become more advanced, targeting sensitive data and financial systems across both public institutions and private organizations. A data breach typically involves unauthorized access to confidential information, and recent incidents suggest that such breaches are becoming more frequent and sophisticated.
One of the most alarming cases involved the Corporate Affairs Commission, where about 25 million documents were reportedly compromised. This incident has intensified fears over the vulnerability of government databases.
Similarly, the Nigeria Data Protection Commission launched investigations into alleged breaches linked to Remita Payment Services and Sterling Bank, where hackers reportedly accessed sensitive financial and identity data. In another case, First City Monument Bank suffered a cyber fraud attempt targeting over N3 billion, with attackers successfully siphoning N677 million before detection.
Cybersecurity concerns have also affected digital platforms, including an investigation into the e-commerce platform Temu over the handling of data belonging to millions of Nigerian users.
According to IT consultant Adedoyin Adedeji, the root of the problem lies in weak oversight and lack of proper security checks. He noted that many government platforms are deployed without undergoing independent security audits, vulnerability testing, or certification by regulatory bodies like the National Information Technology Development Agency.
Adedeji emphasized the need for mandatory third-party security audits for all government digital services, alongside a certification system to ensure compliance with minimum security standards. He argued that such measures would improve accountability and help restore public confidence, especially after data breaches.
He also called for stronger collaboration between the Federal Ministry of Innovation, Science and Technology and the Office of the National Security Adviser to establish a comprehensive national cybersecurity framework.
The banking sector, he added, remains vulnerable due to over-reliance on external security providers and insufficient in-house monitoring systems. He stressed the importance of building internal cybersecurity teams capable of detecting and responding to threats in real time.
Another major challenge is the shortage of skilled cybersecurity professionals in Nigeria. While the country has a strong base of software developers, Adedeji pointed out that cybersecurity expertise is limited, with many professionals being self-trained and often seeking better opportunities abroad.
He also warned that artificial intelligence is rapidly transforming the threat landscape. While AI can help detect suspicious patterns and improve response times, it can also be exploited by hackers to identify system vulnerabilities faster than ever before. This makes it both a powerful defense tool and a significant risk factor.
To address these challenges, Adedeji recommended increased investment in cybersecurity education, the development of local talent, and the creation of a unified national system for identity verification to reduce repeated data exposure during verification processes.
He concluded that without stronger policies, better investment, and improved accountability, Nigeria’s digital infrastructure will remain exposed to increasingly sophisticated cyber threats in the coming years.
