A senior executive at Nomba Financial Services has raised alarm over a growing cyber threat targeting users in Nigeria’s digital economy, warning that homograph attacks are undermining trust in online platforms.
The disclosure was made in a statement on Thursday by Chidinma Oboli, Integrated Management System Lead at Nomba, who said the attacks are deceptive and dangerous, relying on visual manipulation to trick users into revealing sensitive information.
“In Nigeria’s rapidly growing digital economy—where mobile-first platforms are redefining banking, commerce, and social interaction—user trust has become one of the most valuable assets a digital company can build,” Oboli said. “But just as digital products scale fast, so do the threats that seek to undermine them.”
He explained that homograph attacks involve registering fake websites using characters from foreign scripts that closely resemble Latin letters. These websites, though fraudulent, appear almost identical to legitimate ones, fooling users into sharing login credentials, payment information, and personal data.
“A domain like www.fαcebook.com can easily be mistaken for www.facebook.com. To the human eye, they’re the same, but behind the scenes, the user is being redirected to a malicious site,” the executive said.
Oboli noted that the implications are especially severe in a digital-first market like Nigeria, where fintech platforms, e-commerce services, and social media apps play a critical role in daily life.
He said that while the attacks are technical in execution, the damage they cause is deeply human—eroding confidence and trust in platforms that handle financial and personal information.
The expert urged digital companies to view security as part of the overall user experience, not just a backend function, stressing that protecting users from threats like homograph attacks should be integrated into product design and communication.
Oboli also called on users to stay vigilant online, advising them to double-check website URLs, avoid clicking unfamiliar links, and use strong, unique passwords.
He warned that messages demanding urgent action, such as account suspension threats, are often signs of phishing attempts.
“These attacks don’t just compromise data—they compromise trust,” he said. “And in today’s digital environment, trust is everything. A secure product is not just defined by its code, but by how it protects the human moments that connect users to a brand.”
His warning comes amid growing concerns about cybersecurity in Nigeria’s fast-expanding digital services sector, where fraudsters are increasingly using sophisticated tactics to exploit unsuspecting users.
