Today, artificial intelligence, particularly Agentic AI, represents a new frontier, one that challenges not just our technological boundaries but our ethical, strategic, and existential ones.

At the center of this unfolding narrative is Medinatu Onyoza Musa, a Birmingham City University alumna and a distinguished member of the Cyber Security Experts Association of Nigeria (CSEAN).

Medinatu is not just a cybersecurity expert; she is a national thought leader whose voice is shaping how Africa and the world confront the risks and responsibilities of autonomous systems.

Agentic AI is unlike any previous form of artificial intelligence. It doesn’t wait for human prompts or follow static rules.

It perceives, analyzes, decides, and acts; all independently. This autonomy is what makes it revolutionary, but also what makes it deeply concerning.

Medinatu has been one of the few experts to consistently raise the alarm about the unchecked deployment of Agentic AI, especially in cyber-physical environments where human lives, national security, and societal stability are at stake.

Her analysis is grounded in both technical depth and strategic foresight. She breaks down Agentic AI into its core components: the Data Agent, which collects information from sensors, databases, and APIs; the Analysis Agent, which interprets that data; and the Decision Agent, which acts on it, often without any human oversight.

In civilian applications, this architecture powers autonomous vehicles, delivery bots, smart manufacturing systems, and healthcare robotics.

It optimizes routes, detects faults, reduces downtime, and enhances productivity. In cybersecurity, Agentic AI is already being used to detect threats, deploy countermeasures, and make real-time defense decisions.

But Medinatu’s concern lies in its militarization. She has tracked how countries like the United States, China, Russia, Japan, and France are embedding Agentic AI into their defense strategies.

Shield AI’s MQ-35 V-BAT drone, for example, can autonomously collect data and execute tactical decisions.

China’s CETC unmanned ground systems exhibit Agentic AI characteristics, capable of mass drone deployment and autonomous precision strikes.

Russia’s UAVs are designed for stealth combat, tactical intelligence, and autonomous target engagement. Japan’s Loyal Wingman UAV and AI-assisted command systems are reshaping maritime and aerial defense. France’s ARTEMIS.IA program, backed by €100 million annually, is building AI-driven military decision support systems.

These developments are not theoretical. They represent a shift in global military doctrine, from human-led operations to machine-speed warfare.

Medinatu warns that this shift introduces unprecedented risks: misinterpretation of intent, unplanned escalation, and the erosion of human control in high-stakes engagements.

She points to the estimated $10 billion spent by the U.S. Department of Defense on AI-enhanced capabilities over the past five years, and the growing investments by China, Russia, and France.

The race to develop superior autonomous weapons and surveillance systems is not just technological, it’s geopolitical.

Beyond the battlefield, Medinatu is equally concerned about the societal implications of Agentic AI. As these systems become embedded in mobile devices, smart infrastructure, and online platforms, they introduce a new paradigm of passive surveillance. People’s movements, communications, and behaviours are increasingly monitored, not by humans, but by machines that learn, adapt, and act in real time.

Medinatu challenges us to ask: What happens when an autonomous system misfires? Who is accountable when a machine makes a fatal decision? How do we protect human agency in a world increasingly governed by algorithms?

Her expertise is not confined to critique. Medinatu is actively shaping policy conversations, advising institutions, and educating the next generation of cybersecurity professionals.

She understands that cybersecurity today is not just about firewalls and passwords, it’s about governance, ethics, and strategic resilience.

She advocates for robust oversight frameworks, technical safeguards, and international norms to ensure that Agentic AI serves humanity rather than undermines it.

Medinatu also highlights the dual-use nature of Agentic AI. In healthcare, it powers robotic surgery and autonomous diagnostics. In finance, it drives fraud detection and intelligent advisory systems. In energy, it manages smart grids and predictive maintenance. In retail and logistics, it forecasts demand and automates inventory. These benefits are real, but they must be balanced against the risks of autonomy without accountability.

What sets Medinatu apart is her ability to connect the dots, from technical architecture to geopolitical strategy, from operational efficiency to ethical oversight.

She doesn’t just describe what Agentic AI can do; she interrogates what it should do, and under what conditions.

Her voice is a reminder that innovation must be guided by responsibility, and that cybersecurity is the foundation upon which safe, ethical AI must be built.

In a world racing toward automation, Medinatu Onyoza Musa stands as a sentinel, urging caution, demanding transparency, and championing human-centered governance. Her work is not just relevant; it is essential.

As Agentic AI continues to evolve, Medinatu’s leadership ensures that Africa is not just a consumer of global technology trends, but a contributor to the ethical and strategic frameworks that will define the future.

Agboola, a seasoned cybersecurity professional with years of service to the community, emerged winner in a contest that also featured Professor Idris and Dr. Ademiluyi, both respected figures in the cybersecurity ecosystem.

In his acceptance letter, Agboola expressed gratitude to CSEAN members and the electoral committee for the trust reposed in him, while commending his fellow candidates for their contributions.

“I am deeply honoured and humbled to accept the responsibility of serving as the President of CSEAN. Though the election yielded only one President, your voice and value remain integral to our collective progress,” Agboola said, pledging to work with his co-contestants in unity.

Newly Elected Executive Council

The election also ushered in a new executive team to steer the association for the next tenure:

• President: Olabode Agboola
• Vice President: Oluwatoni Falade
• Director of Membership: Elizabeth Mojisayo Adekunle
• Director of Communications: Muntaka Mukhtar Bube
• Director of Information Security: Awobifa Olamide Seyi
• Director of Programmes: Gabriel Akinremi
• Director of Training and Education: Jonathan Ayodele

Agboola’s Vision and Strategic Agenda

Agboola outlined a robust agenda aimed at strengthening CSEAN’s role in advancing Nigeria’s cybersecurity resilience. His administration’s focus will include:

• Enhancing member experience and value proposition
• Empowering women in cybersecurity through targeted initiatives
• Establishing and expanding campus fellowships to mentor students nationwide
• Elevating CSEAN’s global visibility via the Cyber Secure Africa Conference
• Creating sustainable revenue streams through digital platforms and subscription-based awareness products
• Strengthening training, certification support, and policy advocacy capacity
• Offering assisted risk management for SMEs and other organizations
• Launching CyberYarn, a podcast series connecting experts, academics, and policymakers
• Providing strategic cybersecurity advisory services to state governments and public sector leaders

Agboola emphasized that the work of the new leadership “begins immediately,” with a call for collaboration across all members and stakeholders to build a stronger cybersecurity ecosystem.

Driving a Secure Digital Future

The new CSEAN President pledged to lead with integrity, vision, and service, especially to the youth, women, and professionals across Nigeria and the diaspora.

“Together, we will advance a more secure cyber future for Nigeria, grow CSEAN’s impact, and leave a legacy of excellence,” Agboola affirmed.

The election marks a pivotal moment for CSEAN, which has become a rallying point for cybersecurity advocacy, knowledge sharing, and capacity building in Nigeria and Africa at large.

An impeccable source at the elections venue told Techeconomy that Agboola polled the majority votes, 161, leading other two candidates, Professor Idris Ismail (79 votes) and Dr. Yemi Ademiluyi (36 votes).

A seasoned cybersecurity veteran, Agboola currently serves as a Cybersecurity Risk Manager in the UK. He holds a BSc in Computer Science from the University of Hertfordshire and earned an MSc in Computer Security and Forensics with distinction from the University of Bedfordshire.

His credentials are bolstered by a range of prestigious certifications, including CISM, GDPR-DPO, ISO27001 (lead auditor and implementer), CCNA, ITIL, PMP, and more.

Before assuming the presidency, Agboola held the post of Director of Training and Education at CSEAN, where he played a pivotal role in elevating the organization’s standards and nurturing the next generation of cyber experts.

See Details here…

The award recognises CSEAN’s outstanding contributions to research and policy that are shaping Nigeria’s cybersecurity framework in an increasingly digital age.

Held under the theme “Building a Resilient Digital Future,” the conference brought together stakeholders from across government, industry, and academia to tackle the complex security challenges facing Nigeria’s digital infrastructure. Organised by the National Information Technology Development Agency (NITDA) and hosted by the Federal Ministry of Communications, Innovation and the Digital Economy, with support from the Office of the National Security Adviser (ONSA), NCSC 2025 served as a national platform for driving cybersecurity strategy and dialogue.

Accepting the award on behalf of CSEAN, Vice President Dr. Umar Sa’ad expressed gratitude for the recognition, while CSEAN President Ade Shoyinka praised NITDA’s efforts in convening the landmark event. He also commended the association’s Research and Development team, led by John Odumesi, for their relentless efforts in delivering timely, impactful research outputs. Team members include Oluwafemi Osho, Jonathan Ayodele, Polra Victor Falade, Hamzat Lateef, and Olajumoke Oloyede.

CSEAN’s research outputs, including the National Cyber Threat Forecasts (2023–2025) and the accompanying Cyber Threat Landscape reports, have played a crucial role in guiding national policy and strengthening Nigeria’s cybersecurity preparedness.

These reports, along with peer-reviewed conference proceedings from Cyber Secure Nigeria, are publicly accessible via the official CSEAN website and continue to serve as a resource for practitioners and policymakers alike.

The award is both a testament to the group’s influence and a signal of the growing importance of locally generated cybersecurity intelligence.

It arrives ahead of CSEAN’s flagship event, the Cyber Secure Nigeria Conference, slated for October 8–9, 2025, in Lagos. This year’s theme, “Digital Trust as National Capital: Enabling Secure, Inclusive Digital Economies,” will continue the conversation sparked at NCSC 2025, exploring how digital confidence and trust can fuel economic resilience and national development.

With this recognition, CSEAN reaffirms its role as a leading voice in Nigeria’s digital security space – driving research, policy, and collaboration in service of a more secure and inclusive digital future.

Cybersecurity is a shared responsibility that requires the collective effort of every individual, business, and government entity to ensure a secure digital environment.

As a leading body in the field of cybersecurity in Nigeria, we are committed to enhancing our nation’s cybersecurity posture.

The increasing reliance on digital technologies has brought about significant benefits, such as improved access to information and efficient service delivery.

However, this digital transformation has also introduced significant cybersecurity risks that threaten national security and economic stability.

Current State of Cybersecurity Awareness

A significant portion of the Nigerian population, especially in rural areas, lacks basic cybersecurity knowledge.

This limited awareness makes individuals vulnerable to various cyber threats. Also, many organizations, particularly Small and Medium Enterprises (SMEs), lack adequate cybersecurity infrastructure and resources, leaving them exposed to cyberattacks.

The shortage of skilled cybersecurity professionals further worsens these challenges, as organizations struggle to effectively address the growing threat landscape.

Phishing attacks remain a persistent threat, with individuals falling victim to sophisticated social engineering tactics.

Data breaches continue to occur, compromising sensitive personal and financial information. Cybercrime, including online fraud, identity theft, and ransomware attacks, is on the rise, causing significant financial losses and reputational damage.

Recent studies have highlighted the current state of cybersecurity awareness in Nigeria. For instance, research conducted among university students in Northeastern Nigeria revealed that while there is some basic knowledge of cybersecurity, there is a pressing need for more comprehensive awareness programs, particularly in areas such as cyberbullying, child online protection, self-protection, and internet addiction.

Another study on online banking users in Nigeria showed a high level of awareness of cybercrime but also identified gaps in password security practices and the need for more robust cybersecurity measures.

Poverty and unemployment drive cybercrime in Nigeria, posing a threat to national security and socio-economic development.

Addressing these underlying issues, promoting awareness, and implementing effective cybersecurity measures are crucial for mitigating cybercrime and fostering a safer digital environment.

To this end, we are calling on all stakeholders, including government agencies, private sector organizations, educational institutions, and civil society, to join us in this important endeavour.

Government Initiatives

We appreciate the Nigerian government’s efforts to enhance cybersecurity and protect its cyberspace through various initiatives, which include the establishment of the National Cybersecurity Coordination Centre (NCCC) to facilitate the implementation of cybersecurity

programs and legislation, the NCCC coordinates national efforts against cyber threats; The 2021 National Cybersecurity Policy and Strategy (NCPS) which builds on the 2015 framework, addressing evolving cybersecurity challenges.

It aims to enhance digital competitiveness, promote indigenous technology, safeguard critical infrastructure, and combat cyberattacks, online fraud, and misinformation; The Cybercrime (Prohibition, Prevention, etc.) Act 2015 which was enacted to combat cybercrime and protect digital assets.

The recent Cybercrimes (Prohibition, Prevention, etc.) Amendment Act 2024 further strengthens cybersecurity measures by introducing Sectoral Computer Emergency Response Teams (CERTs) and requiring reporting of cyber threats within 72 hours; The Amendment of the National Identification Number (NIN) Requirement which mandates its use for electronic financial transactions to facilitate tracking and verification; and The Nigeria Data Protection Act 2023 which builds on previous data protection regulations to strengthen data protection rights and enhance security in response to the evolving data landscape.

These initiatives aim to create a more secure digital environment in Nigeria, addressing evolving cyber threats, protecting critical infrastructure, and safeguarding personal data.

The government’s commitment to international cooperation, capacity building, and legal frameworks ensures a proactive approach to cybersecurity.

Our Initiatives

We have been instrumental in raising cybersecurity awareness in Nigeria. Through various initiatives, we are actively promoting cybersecurity best practices and educating the public about emerging threats, which include the annual Cyber Secure Nigeria 2024 Conference and this year’s conference theme Leveraging Artificial Intelligence for Cyber Resilience: Building A Secure Future Bridge.

This event brought together academia, industry experts, government officials, and cybersecurity professionals to share knowledge and insights; we also offer training and workshops to equip individuals and organizations with the necessary skills to protect themselves from cyber threats; we conduct various awareness campaigns to educate the public about the importance of cybersecurity.

These campaigns often involve social media, workshops, and public events to reach a wider audience; we publish regular cyber threat landscapes and forecasts to highlight emerging threats and vulnerabilities in Nigeria.

These reports help individuals, organizations and governments prioritize their security efforts and allocate resources effectively; and we collaborate with other organizations, both locally and internationally, to share knowledge, resources, and best practices.

These partnerships help to strengthen the cybersecurity ecosystem in Nigeria. By actively promoting cybersecurity awareness and education, we play a crucial role in safeguarding Nigeria’s digital landscape.

Call to Action

To address growing cybersecurity challenges, individuals, organizations, and the government must take concerted action. Individuals should prioritize digital literacy, strong password hygiene, online vigilance, and regular software updates.

Organizations should invest in cybersecurity infrastructure, train employees, develop incident response plans, and prioritize data protection.

The government should strengthen legal frameworks, foster public-private partnerships, invest in research and development, and promote cybersecurity awareness.

To further enhance Nigeria’s cybersecurity posture, stakeholders should collaborate on training programs, promote cyber hygiene, raise awareness about emerging threats, engage communities, and support research initiatives.

Also, strengthening cyber threat intelligence capabilities through investment in research and developing Sector-Based Incident Response Capabilities. International cooperation and continuous learning are also essential components of a robust cybersecurity strategy.

By taking these comprehensive steps, Nigeria can better protect its digital infrastructure, safeguard privacy, and ensure national security.

Conclusion

As we conclude Cybersecurity Awareness Month 2024, we urge Nigerians to prioritize online safety. Cybersecurity is a shared responsibility requiring collective action from individuals, organizations, and the government. Let us continue to engage in discussions, share knowledge, and report suspicious activities to build a secure digital environment. By working together, we can ensure a safer cyberspace for all.

*Article written by Ade Shoyinka, President of Cyber Security Experts Association of Nigeria (CSEAN) and John Odumesi, Director of Research and Development, CSEAN

Cybersecurity job is not for everybody; it take months, if not years, of learning, sacrifices and mastery to become a though leader in this field. Their stories should inspire you who is interested in taking up a career in cybersecurity.

Did you know that, according to the University of Maryland, hackers attack every 39 seconds, on an average of 2,244 times a day?

With the increase in the generation of digital data, it is anticipated that cyberattacks will quadruple shortly.

In this article, we are recognizing 10 influential thought leaders in cybersecurity. These are true thought leaders who are confident and clear in their purpose.

Others in this industry turn to them for guidance. It is important you follow these leaders to keep updated on cybersecurity matters:

1.  Adewale Peter Obadare (DrOPA)

Position: Co-Founder and Chief Visionary Officer (CVO), Digital Encode Limited.

Global #DrOPA is arguably the most credentialed Pan-African digital trust leader, cybersecurity strategist, GRC thought leader & global technopreneur with fifty Six (56) professional certifications and still counting.

He is a fellow of the British Computer Society (FBCS); fellow, Institute of Management Consultants (FIMC); fellow, Institute of Information Management (FIIM); fellow, Institute of Brand Management (FIBM); Chartered Information Technology Professional (CITP); the First

PECB Certified Data Protection Officer (CDPO) in Nigeria; the first Ec-Council Licensed Penetration Tester (LPT) in Africa; first Ec-Council Certified BlockChain in Africa; second COBIT 5 Certified Assessor in Africa Payment Card Industry Data Security Standard Qualified Security Assessor (PCI DSS QSA), amongst others.

To his credit, Dr. Obadare was awarded Honorarary Doctorate Degree in Cybersecurity from Trinity International University of Ambassadors Atlanta Georgia, United State of America.

Peter is a well-recognized subject matter expert with numerous successful engagements to his credit in Africa.

Obadare Peter Adewale’s list of credentials

DrOPA is a big dill in his field; the résumé is peppered with accomplishments anise common for him to command a large celery:

• Doctor of Human Letters – Cybersecurity (TIUA 2018)
• Harvard University Cybersecurity Risk Management (2018)
• Harvard Kennedy School (HKS LIDP 2017)
• Harvard Kennedy School (HKS CSX 2017)
• Harvard Business School (HBS LPSF 2014)
• MIT SLOAN School Of Management (ACE 2018)
• MIT SLOAN School Of Management (EDP 2016)
• MIT SLOAN School Of Management (GEA 2014)
• Oxford Blockchain Strategy Expert (2018)
• MIT Professional Education (CSX 2015)
• MIT Professional Education (CMBC 2015)
• FELLOW BRITISH COMPUTER SOCIETY
• FELLOW INSTITUTE OF INFORMATION MANAGEMENT
• FELLOW INSTITUTE OF MANAGEMENT CONSULTANT
• FELLOW INSTITUTE OF BRAND MANAGEMENT
• CHARTERED IT PROFESSIONAL
• COBIT®5 CERTIFIED ASSESSOR
• COBIT®5 IMPLEMENTATION CERTIFICATE
• COBIT®5 FOUNDATION CERTIFICATE
• IIB COUNCIL CERTIFIED BLOCKCHAIN PROFESSIONAL (C|BP
• PAYMENT CARD INDUSTRY PROFESSIONAL
• PAYMENT CARD INDUSTRY QUALIFIED SECURITY ASSESSOR
• ISO 27001 MASTER
• ISO 27001 LEAD AUDITOR
• ISO 20000 LEAD AUDITOR
• ISO 22301 LEAD AUDITOR
• ISO 27001 LEAD IMPLEMENTER
• ISO/IEC 27032 LEAD CYBERSECURITY MANAGER
• ISO/IEC 38500 LEAD IT CORPORATE GOVERNANCE MANAGER
• INTEGRATED MANAGEMENT SYSTEMS LEAD AUDITOR
• MCP, CCNA, CCDA, CCNP, CCDP, CCIE (Written), SMBE, SBCS, SNAA, QCS, CSA, MSA, CEH, ECSA, ECSP, CHFI, LPT.

Like the saying goes, Dr Obadare is an old salt who has mustard enough experience over thyme to become a sage.

2. Confidence Staveley

Position: Founder and Executive Director, CyberSafe Foundation

Confidence Staveley is Africa’s most celebrated female Cybersecurity Leader, an author, API security
professional, talent developer, international speaker, and inclusion advocate.

She is also the Author of API Security for White Hat Hackers: Uncover offensive defense strategies and master secure API implementation.

What sets Confidence apart is her innate ability to merge profound cybersecurity knowledge
with impeccable communication finesse.

She excels in translating intricate cybersecurity concepts into digestible, jargon-free insights for diverse audiences. Her unique approach is brilliantly showcased in her YouTube series, “API Kitchen” where she uses culinary metaphors to explain API Security concepts.

Within its debut season, this series amassed over half a million views across social media, as Confidence masterfully served up a banquet of API security wisdom.

• Here’s a summary of some of her achievements, recognitions and work:
• Winner, Cybersecurity Woman of the World, 2023 Edition
• ISC2 Global Achievement Awards (CEO Award) winner.
• Top 25 Leaders in Cyber Security 2024 (Cyber Security Hub)
• Spoken at several International Conferences like Payment Card Industry Security Standards Council (PCI SSC) Community meetings in North America, Europe, and Asia.
• 45 Most Influential Women in Digital Transformation 2021-2022
• ABCD Africa’s 50 Most Impactful Voices 2023
• Featured as 40 under 40 in cybersecurity 2023
• International Security Journal 2022 and 2023 influencer
• 20 African Women of Impact 2022 – Ventures Africa
• Built Africa’s biggest female-focused novice-to-professional, free cybersecurity training, mentorship, and placement program; CyberGirls Fellowship.
• CyberSecurity Woman of the Year Award winner 2021 and 2022
• 2022 Obama Africa Leader
• U.S State Department’s International Visitors Leadership Program (IVLP) Impact Awards.
• IFSEC Global Top Influencers in Security & Fire (One-to-Watch) for 2021
• Young CISO of the Year award 2021
• Led my team and 20+ cybersecurity experts across 7 countries to provide cybersecurity upskilling training to over 10,000+ employees of SMEs across 36 states in Nigeria.
• Listed as Top 50 Women in Cybersecurity in Africa 2020

3. Oluseyi Akindeinde

Position: Co-founder/Chief Technology Officer, Digital Encode Limited

With over two decades of expertise in the technology and information security sectors, Dr. Akindeinde, has recently dedicated a significant portion of his professional journey to understanding and addressing the security challenges within Electronic Funds Transfer (EFT) and Financial Transaction Systems (FTS).

He has share the findings of his comprehensive research work at an array of esteemed conferences and with prestigious organisations such as the Office of the National Security Adviser (Nigeria), Central Bank of Nigeria (CBN), Information Security Society of Africa – Nigeria (ISSAN), CCIBN, CIBN, EFCC, NSE, EPPAN, and the executive councils and senior management of numerous financial institutions across Nigeria, and beyond.

Dr. Akindeinde serves as an advisor to the Nigerian eFraud Forum (NeFF), a broad-based initiative by the CBN.

Beyond his advisory role, Seyi’s expertise has been sought by entities from various sectors including finance, manufacturing, oil and gas, telecommunications, as well as State and Federal Government Agencies.

He regularly provides enlightening presentations on current cyber security issues to the National Assembly, Defense Intelligence Agency (DIA), and Office of the National Security Adviser (NSA).

Recently, the digital juggernaut immersed himself in the realm of web3 and blockchain technology, concentrating on harnessing these innovative systems to enhance enterprise security.

His particular focus lies in applying these technologies to advance web and product authentication, identity and access management as well as web and IRL token gating using smart contracts.

Dr. Akindeinde is passionate about establishing and developing tech startups. He is involved in two ventures; first, Hyperspace Technologies, known for its groundbreaking product, cipherKEY tap2sign.

Their innovative patented product cipherKEY tap2sign harnesses NFC microchip technology to offer a passwordless, contactless, and trustless multi-factor authentication, identity and access management for web based applications. The technology also used in our Keymaster VAULT product, offers a low cost and secure, cold storage for digital assets.

The second startup, Neural AI, provides essential support to organizations intending to build and deploy Large Language Models (LLMs) for generative text.

Top skillsTop skills:

Blockchain • Cybersecurity • Artificial Intelligence (AI) • Near-field Communication (NFC) • Web3

4. Chukwuebuka Ume-Ezeoke

Position: Chief Technology Officer, CED Technologies

Chukwuemeka Ume-Ezeoke (CUE) is a technology advisor and entrepreneur who is highly driven with keen insights into understanding and interpreting various organizational demands.

With over a decade of technical experience and excellent skills in technology innovation, entrepreneurship, and business management, he has extensive experience developing and implementing technology strategies, solutions, and transformations for businesses in various industries like aviation, healthcare, oil&gas, dinancial, FMCG, and technology.

Through CED Technologies, as the CTO, they have partnered with Appknox the World’s highest rated mobile security solution on Gartner and G2 Crowd.

CUE continues to effectively manage technical and business teams in different countries executing a wide range of IT projects and strategic business solutions with industry leaders as he continues to encourage and share cybersecurity knowledge and help secure data in organizations across Africa.

Chukwuemeka Ume-Ezeoke is interested in solving business and economic challenges by identifying high-potential, technology-intensive business opportunities, gathering resources such as talent and cash, and managing rapid growth using principled, real-time decision-making skills.

He assists businesses worldwide make positive changes by utilizing top-notch technologies such as cloud solutions architecture, software development life cycle management, implementation & support, and cross-functional team coordination.

CUE also specializes in strategic business development, planning, execution, developing entrepreneurial skills, maintenance of technical services, client relationship management, cybersecurity, mobile & web application security services, decision making using a multiagent robotic system, training, and skill development for teams.

Top skillsTop skills: Agile Methodologies • Platform as a Service (PAAS) • Mobile Applications • Cybersecurity • Process Improvement

5. Jimi Falaiye

Position: Sophos Territory Manager for West Africa

Jimi Falaiye is a business sales and business manager with over 13 years of experience in the Information, and communication technology (ICT) industry in business development and sales of Software, IT infrastructure (Security and Networks), and other IT services within Nigeria and the West African Market.

Currently, he is the Sophos Territory Manager for West Africa, growing the sales revenue and expanding both customer and partner ecosystem within the region.

He previously worked in various roles with D-Link Networks West Africa, Cyberoam, Telesol (GH), etc.

Falaiye grew the Cyberoam business to become the go-to Unified Threat Management solution for various companies in Nigeria before transitioning and expanding the Sophos security solution business to Ghana and other West African countries.

He holds a Bachelor of Engineering Degree in Electrical Electronics Engineering and an MBA from the Business School Netherlands.

He has attended various short programs and courses in business management and sales. He has also won various awards including 3 consecutive Sophos President Club awards for overachieving set business sales targets.

6. Olufemi Ake

Position: Managing Director, ESET West Africa (Anglophone)

Olufemi is an experienced strategic business development and operations professional with more than seventeen (17) years of experience cutting across Real Estate, Oil & Gas, Finance, FMCG and Information Technology sectors with vast business knowledge of the United Kingdom and West Africa markets.

Olufemi served as the Managing Director at ESET in West Africa. He is responsible for the growth and wide adoption of cybersecurity within the West African (Anglophone) region comprising five (5) countries, Nigeria, Ghana, Liberia, Sierra Leone, and The Gambia.

He spearheaded the strengthening of the brand over the last 10 years by opening access to strong, trust-based relationships with private and public sectors and ensuring symbiotic business relationships and growth with partners of ESET within the operational markets.

In his quest to ensure digital security is widely accepted in this part of the world, he has championed various cybersecurity education programs at schools, large and small corporations, and public sector institutions by creating awareness of the importance.

He has also written numerous articles and press releases, which often serve as advisories to Information Technology (IT) professionals on ethics, compliance, risk, and governance in corporate environments.

He attended the University of Sheffield in England with Honors and has been in a couple of business schools since graduation.

He is certified in Strategic Management and Innovation for Sustainable Business Growth at the China-Europe International Business School (CEIBS). In 2022, he was selected as one of the four IFSEC most influential security professionals in Africa.

7. UMAR SA’AD

Position: Manager Information Technology, ANOH Gas Processing Company Limited.

Umar Sa’ad is one of the influential thought leaders in cybersecurity; a seasoned expert with over a decade of experience countering emerging cyber threats.

He specializes in detecting threats, assessing vulnerabilities, and responding to incidents by designing comprehensive security programs that combine technology, processes, and human behavior.

With skills in network architecture, penetration testing, and risk management, Umar currently holds the positions of Vice President at the Cybersecurity Experts Association of Nigeria (CSEAN) and IT Manager at ANOH Gas Processing Company (AGPC); a leading midstream energy company in Nigeria.

He holds an MSc in Computer Networking and key certifications including CEH, CISM, and ISO 27001 Lead Implementer, remaining on the cutting edge of cybersecurity advancements.

8. Chinenye Chizea

Position: Security Architect and Technical Lead, World Bank/FGN Digital Identification for Development (ID4D) project.

Chinenye Chizea has over 20 years’ professional experience from a diverse background in Information Security, IT management, Enterprise Architecture, Privacy and Compliance. She is named among IFSEC Global’s Security & Fire Influencers 2021 Security Executives.

Chinenye is an advocate of implementing best practice security risk controls, common security frameworks and standards within an organization.

Her broad technical background built over the years in the UK and in Nigeria has equipped her with the skills and knowledge in areas relating to corporate governance, regulatory compliance, digital transformation, risk management,business continuity, information security and assurance.

Chinenye was the first female CISO for National Identity Management Commission (NIMC).

A role that had her accountable for ensuring the security of her organizations information assets as well as driving her organizations certification in ISO/IEC 27001:2013 and PCI DSS Program. Chinenye participated in the review of Nigeria’s 2021 National Cybersecurity Policy and Strategy (NCPS).

Her current role sees her consulting for the World Bank/Federal Government of Nigeria (FGN) digital identity for development (ID4D) project on security and privacy.

She has served in varying committees, and is frequently interviewed, and invited to speak at varying platforms on cybersecurity, privacy, compliance and related corporate governance responsibilities. She has Master’s degree in Information Technology, a Bachelor’s degree in Engineering Physics, and holds several industry certifications including CISSP, ISO/IEC 27001:2013 Master, MCSE_Private Cloud, OCP, ITIL and Cisco certifications.

9. Remi Afon

Position: Pioneer President, CSEAN, and the Founder GoLegit Africa

Remi Afon is a dynamic and results-oriented Cyber Security Specialist with an exceptional track record of success.

With over two decades of IT experience and a solid academic foundation, including a BSc in Computer Science from the University of Ilorin, an MBA, and an MSc in Information Security from Royal Holloway University of London, Remi brings a wealth of expertise to the table.

A true luminary in the field, Remi is not only a sought-after speaker at prestigious conferences, summits, and seminars, but also a strategic thinker who has consistently delivered outstanding results in overseeing diverse corporate IT projects.

Remi’s contributions extend beyond the boardroom, as he actively shapes the strategic planning and deployment of information security solutions that seamlessly align with both business and governmental objectives.

Remi Afon is not just a cybersecurity professional; he’s a mentor and coach, recognized for his exceptional skills in the field.

He has authored educational materials for the Infosec Institute, Chicago USA and holds esteemed roles as a PECB & CEH Certified Trainer.

Currently, Remi’s focus is on the strategic implementation of cloud migration security solutions and ensuring robust application security for both public and private sector entities. His unparalleled expertise in core security operations serves as a strong foundation for these endeavors.

In addition to his impressive career, Remi is the pioneer and immediate past president of the Cyber Security Experts Association of Nigeria (CSEAN), demonstrating his commitment to advancing cybersecurity in Africa.

He is also the Founder of GoLegit Africa, an innovative initiative aimed at rehabilitating cybercriminals. Furthermore, Remi Afon has established Penayde Cybersecurity Limited in the United Kingdom and Lynsec Cybersecurity Solution in Nigeria, cementing his status as a visionary leader in the cybersecurity landscape.

10. Uchenna Jerome Orji

Position: Research Fellow, African Centre for Cyber Law and Cybercrime Prevention (ACCP)

Meet Dr Uchenna Jerome Orji, an Attorney admitted to the Nigerian Bar. He holds an LL.B from the University of Nigeria, and an LL.M from the University of Ibadan, with specialization in cybersecurity and information technology law.

He also holds a PhD in Law from Nnamdi Azikiwe University, Nigeria, with specialization in telecommunications law.

Dr. Orji is a Fellow of the African Center for Cyber Law and Cybercrime Prevention within the UN African Institute for the Prevention of Crime and the Treatment of Offenders in Kampala, Uganda.

He is the author of Cybersecurity Law and Regulation (Wolf Legal Publishers: The Netherlands, 2012), International Telecommunications Law and Policy (Cambridge Scholars Press: United Kingdom, 2018), and Telecommunications Law and Regulation in Nigeria (Cambridge Scholars Press: United Kingdom, 2018), in addition to several peer reviewed law journal publications. He is a recipient of a national award (the Dangote Prize) for the best overall essay in the fourth edition of the Nigerian Ships & Ports National Essay Competition.

Recently, he has participated as an expert in notable projects including the Council of Europe Cybercrime@Octopus Project; the Commonwealth Virtual Currency Project; the Dutch Terre des Hommes’ Sweetie 2.0 Project; and the GSMA E-Health Regulatory Framework for Africa. In 2016, he was appointed as the resource person/professor of cybersecurity law and policy for the CODESRIA African Cybersecurity Governance Institute.

He has been a speaker at several high-level international conferences including the Hague Global Conference on Cyber Space; the NATO CCD COE’s International Conference on Cyber Conflict; and the Asian Security Conference, and also works as a legal consultant for local and international organizations.

Dr. Orji specializes in cybersecurity & cybercrime law; data protection law; telecommunications law; information technology law; money laundering law; development law; trade law.

=====

(Sources: CSEAN, LinkedIn, Corporate and Individual websites, Profiles)

By; OLIVIA NNOROM

Ade Shoyinka, President of Cyber Security Experts Association of Nigeria (CSEAN), has called on the Nigerian governments, private sector, and civil society groups to join forces against cyber threats in the country. 

He said this on Wednesday at a two-day conference by the Association in Abuja, while speaking on the theme “Cybersecurity: A Digital Transformative Tool in Achieving Sustainable Development Goals’’.

Shoyinka expressed concerns over the persistent occurrence of cybercrime by individuals or groups not affiliated with the government, emphasising that without sufficient preemptive actions, Nigeria’s progress towards achieving the 2030 Sustainable Development Goals (SDGs) would be jeopardised..

He raised alarm on the increasing activities of cyber criminals, that is crippling economies, emphasising that some services of cyber crime are being distributed in the public domain.

Shoyinka also noted that lack of adequate regulation of cryptocurrencies enables anonymous transactions, making it easier for cybercriminals to perpetuate their crimes, while in most situations escaping the consequences.

“The availability of cryptocurrency has also made it easier to conduct transactions anonymously, further fuelling the growth of Ransomware as a service.

“One of such is Genesis Marketplace, available both on the dark web and the public internet; this is like selling a banned substance in a supermarket.” he said.

According to the CSEAN’s President, this platform offers attackers the opportunity to acquire digital fingerprints, enabling entry-level cybercriminals to easily purchase malware, deploy it, and sell large volumes of stolen credentials and other data. These malicious individuals will persistently undermine Nigeria’s capacity to attain the SDGs. 

“The bad actors will continue to undermine our ability to achieve the SDGs, considering the significance of cybercrime in relation to achieving the SDGs, the greater our chances of countering the efforts of bad actors who seek to hinder our progress.’’ he said.

Also speaking on the growing rate of cybersecurity in the country, Nuhu Ribadu, the National Security Adviser (NSA), who was represented by Bala Fakandu, Manager, Nigeria Computer Emergency Response Team (ngCERT), revealed that Nigeria’s Government is currently putting measures in place to amend the 2015 Cybercrimes Act.

Ribadu recognised the existence of emerging technologies which bad state actors are already leveraging to perpetrate cybercrimes.

“It is worthy to ensure the confidentiality, integrity and availability of critical information systems because cybersecurity is an enabler for a better and more sustainable future.

“As we embrace the rapid evolution of technology, we must be mindful of new and exciting areas such as Artificial Intelligence (AI), machine learning and blockchain technologies that will continue to affect the future,” 

“This is bearing in mind that criminal elements are already exploiting new technologies to progress their illicit activities,” he said.

Therefore, he said, Nigeria is actively working towards amending the Cybercrimes Act of 2015. In this process, important inputs from stakeholders are being taken into account, including the aspects related to artificial intelligence (AI) and virtual assets. These inputs are considered crucial in shaping the amendments to effectively address emerging challenges in the realm of cybersecurity.

He highlighted the Presidential Order on the designation and protection of Critical National Information Infrastructure (CNII) currently awaiting President Bola Tinubu’s assent, which will enhance Nigeria’s current efforts for progressive economic prosperity, national development and attainment of national security objectives.

“This underscores the need for continuous cybersecurity awareness in the wake of increased cyber threats from both states and non-state actors.’’ Ribadu added.

According to the NSA, Nigeria had recorded remarkable strides in cybersecurity by fostering international cooperation and collaborations to combat cyber threats, thereby making her a trusted player in the global digital space.

Moreover, Richard Montgomery, the British High Commissioner to Nigeria, said that the commission has always engaged with Nigeria constructively to promote global growth and security.

Represented by Magdalene Lagu, Head of Governance and Stability, Montgomery said the British commission is committed to continuing capacity building work in Nigeria through funding some of its programmes.

“We work hard to see a wide range of cyber stakeholders’ engagement across the private sector, civil society to retain a true understanding of Nigeria’s cyber ecosystem and ensure to support Nigeria against cybercrime,’’ he said.

The conference featured technical sessions, hackathon and the presentation of a research report on cyber threats to Nigeria in 2022, among other activities.

Cyber Security Experts of Nigeria (CSEAN), the leading organization dedicated to promoting cybersecurity in Nigeria, has announced the highly anticipated Cyber Secure Nigeria 2023 Conference.

The conference, centered around the theme “Cybersecurity: A Digital Transformative Tool in Achieving Sustainable Development Goals,” will take place at the prestigious Nigeria Army Resource Centre in Abuja.

Date:

July 11th and 12th, 2023.

Cyber Secure Nigeria is an annual event that brings together cybersecurity professionals, policymakers, industry experts, and stakeholders to address the latest trends, challenges, and best practices in the field of cybersecurity.

As an initiative by CSEAN, the conference aims to foster collaboration, knowledge sharing, and innovation to enhance cybersecurity measures and promote a safer digital environment in Nigeria.

The 2023 edition of Cyber Secure Nigeria will delve into the critical role that cybersecurity plays in facilitating sustainable development and its impact on Nigeria’s socio-economic landscape. With the rapid digitization of various sectors and the increased reliance on digital technologies, cybersecurity has become a fundamental pillar of national security and economic stability.

Key focus during the conference include:

1. 4^th Industrial Revolution
2. AI & Digital Twin Technology
3. Internet of Things
4. Web 3.0 Decentralized Systems
5. Cloud Technology
6. Data Science
7. Cyber Intelligence & Digital Peace
8. SDG & Digital Economy in Nigeria
9. Tech Hubs, Innovation, & Digital Startups

Cyber Secure Nigeria 2023 will feature renowned international and local experts as keynote speakers, panelists, and workshop facilitators. Attendees will have the opportunity to engage in interactive sessions, participate in hands-on workshops, and network with industry leaders, fostering collaboration and knowledge exchange.

“We are thrilled to organize the Cyber Secure Nigeria 2023 Conference in our continuous efforts to promote cybersecurity and create a safer digital environment in Nigeria,” said

Ade Shoyinka, President of CSEAN.

“By bringing together cybersecurity professionals, policymakers, and stakeholders, we aim to drive discussions, share insights, and develop strategies that leverage cybersecurity as a transformative tool in achieving sustainable development goals.”

Venue:

The Nigeria Army Resource Centre, known for its state-of-the-art facilities and strategic location, has been chosen as the venue for this prestigious event. Its commitment to excellence aligns perfectly with the goals of Cyber Secure Nigeria 2023.

Registration for the Cyber Secure Nigeria 2023 Conference is now open. Interested participants can visit the conference website at www.cybersecurenigeria.org for more information and to secure their spot.

Speaking at the Nigeria 2023 Cybersecurity Perspective, a webinar organized by ISC Nigeria Chapter, Mr. Remi Afon, Founder of Lynsec Cybersecurity Solution, argued that there is a lack of transparency in reporting cybersecurity breaches.

ALSO: NIGERIA: CSEAN Releases National Cyber Threat Forecast 2023

This, according to him has remained a significant challenge.

Mr. Remi Afon, who is the immediate past President of the Cyber Security Experts Association of Nigeria (CSEAN), also noted that while all the cybersecurity predictions of CSEAN came to pass, 2023 will continue to witness cyber-attacks owing largely to the huge adoption of Information Technology by government, corporate organisations and individuals.

According to him, the sector that will be most affected is financial institutions, especially Fintech, which he argued is not fully regulated. Thus, leaving many gaps for cyber criminals to thrive.

Other sectors that will be largely affected include the Small and Medium Enterprises, (SMEs), which he noted do not have the resources to fortify their cybersecurity defense and the academia, where many students leverage their infrastructure to launch attacks.

Listing some other challenges that Nigeria as a country and corporate organizations will experience in 2023, Mr. Afon said insider threats and lack of capacity in terms of cybersecurity personnel top the chart.

He believes that Nigeria will continue to suffer from what he described as JAPA syndrome, where many young Nigerians have left the country to get employment outside. “Nigeria doesn’t pay to appreciate skills so many young people will naturally go where they are well paid. So JAPA syndrome will continue to be a challenge,” he said.

Meanwhile, Abdul-Hakeem Ajijola, Executive Chairman, Consultancy Support Services Limited has advised the government and corporate organisations to develop the cybersecurity space in Nigeria, stressing that owing to the adoption of technology in every area of life, cybersecurity will continue to grow in leap and bound.

“Nigeria needs to develop its cybersecurity space by enhancing the incidence response plan, build cyber defense capability and legal processes as the cybersecurity market in Africa is around $ 3.5-4.6 million dollars,” he advised.

The Nigeria 2023 Cybersecurity Perspective was organized to create some forms of awareness and cybersecurity readiness for individuals, corporate organizations and the government.

In the forecast authored by Oluwafemi Osho, John Odumesi, Hamzat Lateef, and Hassanat Abdulraheem, all members of the  Directorate of Research and Development at CSEAN, the body identified that in 2022, there was a significant increase in the complexity and impact of cyber threats worldwide, and Nigeria was no exception.

As experts and active stakeholders in the cybersecurity sector, the authors collected and analyzed data from various sources, including cybersecurity professionals in the country, incident reports, and 2021 and 2022 threat trends, to present our forecast of cyber threats for 2023.

According to them, several factors will contribute to the predicted threats, including the upcoming 2023 general elections, the economic situation in the country, a lack of transparency in reporting security breaches, and a lack of coordination among organisations within the same sector. These and more are captured in the cyber threats forecast categorized and discussed under two sections: (i) election-related threats and (ii) regular and emerging threats.

The report:

1. 2023 Elections and the Deluge of Cyber Threats

Spread of Misinformation and Disinformation

“It is expected that there will be a significant amount of misinformation and disinformation circulated through social media platforms in the run-up to, during, and after the 2023 general elections.

“We are very likely to experience the weaponization of manipulated information to influence people’s perceptions and behaviours in relation to the elections. This can seriously affect the integrity of the electoral process and undermine public trust in democratic institutions.

“Disinformation, specifically related to the elections, is likely to increase, with political parties potentially hiring foreign actors to create and disseminate false or misleading information”.

The experts also said reiterated that Nigeria had a taste of weaponized, coordinated propagation of disinformation during the 2019 general elections.

“It is crucial for individuals to be vigilant and critically evaluate the information they come across, particularly during election periods. It is also vital for social media platforms and government agencies to take steps to address the spread of misinformation and disinformation, such as through fact-checking efforts and public education campaigns”.

Hate Speech

“In the past, Nigerian elections have been marred by instances of hate speech and threatening expressions by politicians. This trend is highly likely to continue as the 2023 general elections draw closer.

“This type of language can incite violence and create a toxic political environment. Political actors need to refrain from using hate speech andpromote a respectful and peaceful campaign. It is also the responsibility of the government and relevant authorities to take action against hate speech and ensure that the elections are conducted in a fair and peaceful manner.

“The upcoming 2023 general elections will be an opportunity for Nigeria to demonstrate its commitment to democracy and peaceful transitions of power. Political actors must work to ensure that the elections are conducted in a way that respects the rights and dignity of all Nigerians”.

Malinformation/Cyber Smearing

The report further indicates that the public has the right to accurate and reliable information to make informed decisions about their leaders. “Regrettably, we have seen reports of private information being made public to malign individuals or groups.

“There have also been instances where true information was shared out of context in an attempt to mislead the public. Over the next year, we will witness more of such occurrences in the lead-up to the elections.

“These types of behaviour are unethical and can create a toxic political environment. Politicians have the responsibility not only to provide accurate and reliable information to the public but also to refrain from sharing private or true information out of context to mislead the public”.

Attacks Against INEC cyberinfrastructure

The information security experts forecast that INEC cyber infrastructure will be targeted in the lead-up, during, and after the elections.

“Attacks will include cyber-based threats, such as the defacement of the INEC website and hacking of the Bimodal Voter Accreditation System (BVAS), as well as physical-based attacks, including arson and vandalism. If the frequency of attacks and arson on INEC facilities from 2021 is anything to go by, we are in for more of such as we approach the general elections.

“INEC must be prepared for these types of attacks and to have measures in place to protect its cyberinfrastructure to ensure the integrity of the electoral process.

2. Regular and Emerging Threats

Government Infrastructure as a Target (GIaaT)

“In 2023, we envisage an increase in the exploitation of computing resources of government establishments for malicious use. Further, more government-related data will be exfiltrated. Based on the data gathered this year, we found threat actors exfiltrating critical information and maliciously leveraging government computing resources, including mining cryptocurrency and setting up Internet Relay Chat (IRC)platforms. Findings also revealed activities related to credential the and backdoor setup.

“Threat actors leverage outdated and vulnerable internet-facing applications in most of these identified facilities. Government establishments need to be aware of these potential threats and take steps to secure their computing resources and protect them against data exfiltration.

“This may involve regularly updating and patching internet-facing applications and systems to ensure they are not vulnerable to exploitation.

Malware

“Malware is a family of so ware designed for malicious purposes. In 2021, Nigeria experienced an onslaught of Trojans, Trojan-downloaders, and Trojan-droppers. 2022 brought about an escalation in backdoor infections. As one of the most common attacking tools preferred by cyber threat actors, malware will continue to be relied on by the actors in 2023.

“If they want to be secure from malware infection, individuals and organizations will do well to keep their operating systems and so ware up to date, adopt a strong password policy, ensure periodic backing up of data, and be cautious with clicking links.

Another Year of Ransomware

“Ransomware, a type of malware, has gained popularity in recent years and therefore warrants being discussed as a standalone topic. In 2021, a significant percentage of organisations in Nigeria reported experiencing ransomware attacks, according to Sophos. 2022 saw the first publicly reported Ransomware attack against a betting company in the country by BlackCat.

“As the ransomware-as-a- service (RaaS) ecosystem continues to evolve, ransomware attacks will become more sophisticated and more common in Nigeria in 2023”.

They forecast that threat actors are likely to focus on devices with weak security and easily exploitable vulnerabilities. Small and medium-sized enterprises (SMEs) are particularly vulnerable to ransomware attacks, as they may not have the resources or expertise to implement advanced security solutions.

“To mitigate the risk of ransomware attacks, individuals and organisations in Nigeria should keep so ware and systems up to date, use antivirus so ware, regularly back up important data, enable two-factor authentication, educate employees on cybersecurity best practices, and consider implementing advanced security solutions.

Attacks on Financial Institutions

“Over the years, attacks against banks and FinTechorganisations in Nigeria have shied from low-tech to high-tech, sophisticated breaches. We experienced an onslaught of financial phishing attacks and the danger of organized targets. As the country launches new Naira notes and transitions to a new democratic government in 2023, it is expected that the financial sector will continue to be a target for cybercriminals.

“These attackers may seek to collaborate with bank employees to gain unauthorized access to critical systems and obtain sensitive information that can be used to exploit the bank’s systems.

“Threat actors may also use traditional tactics such as malware, social engineering, and phishing campaigns to lure employees and customers into revealing sensitive information”.

To protect against these types of attacks, they recommended that financial institutions in Nigeria should implement strong security measures, educate employees on cybersecurity best practices, and regularly update their systems and so ware with the latest security patches.

Attacks in the Cloud

“Following the COVID-19 pandemic, more organisations have wholly or partly adopted enterprise-wide cloud for IT operations. As expected, cybercriminals have ramped up attacks. Research has shown that cloud adoption is expected to increase significantly over the next two years.

“This will translate to an expansion in the threat surface. Thus, we forecast increased attacks on cloud infrastructure in 2023.

“Organisations should integrate security into the planning and operation of cloud services. It is also critical for them to invest in cloud-threat detection capabilities and identity perimeter to protect their cloud assets.

Menace of Insider Threats

“Insider collaborators will continue to pose a significant threat to organisations in Nigeria in 2023. Insider threats are threats to an organisation that comes from individuals within the organisation, such as employees, contractors, or business associates, who have insider knowledge of the organisation’s security practices, data, and digital networks. These individuals may intentionally or unintentionally expose the organisation to risks, such as data breaches, unauthorized access to systems, or of sensitive information.

“We saw cases of employees being lured with money to divulge sensitive organization information in 2022. More of such is likely to occur in 2023. There are several countermeasures organisations in Nigeria can take to mitigate the risk of insider threats in 2023.

“These include conducting thorough background checks on new hires to ensure that they do not have a history of malicious activity or security breaches, implementing access controls to limit the amount of information and resources that employees have access to, monitoring employee activity on networks and systems to detect suspicious behaviour, providing security awareness training to educate employees on the importance of protecting sensitive information and how to identify and report potential insider threats, and implementing technical controls such as data loss prevention systems to help prevent the unauthorized transfer of sensitive information.

“By implementing these countermeasures, organisations can better protect themselves against the risks posed by insider threats.

Cryptocurrency-Based Threats

“The cryptocurrency industry has undergone significant changes and developments in recent years, and it has become an increasingly popular and widely adopted form of digital currency. 2022 has been a rollercoaster year for the industry.

“At the same time, the industry experienced an increase in the number of threats. This includes various types of cyberattacks and scams that aim to steal or fraudulently obtain cryptocurrencies from individuals and organisations.

“We forecast this trend to continue in 2013. Threat actors may use a variety of methods to carry out attacks, such as malware that is spread through cracked so ware or games from torrent sites or phishing scams that use fake websites or emails to trick people into giving away their login credentials or personal information.

“To protect themselves and their assets, cryptocurrency users should be aware of these risks and take steps to protect themselves and their assets.

“This might include using strong passwords, enabling two-factor authentication, and being cautious when clicking on links or downloading so ware.

Ponzi Scheme, Rug Pull, Pump and Dump

“Ponzi schemes and crypto and forex trading rug pull are two of the many financial frauds Nigerians have been contending with in recent years. While these threats are inherently not cyber threats, perpetrators leverage cyberspace to pull off frauds.

“These scams thrive on people’s vulnerability to the promise of quick returns. With a growing interest in crypto in Nigeria, which has made the country to be labelled the most crypt-obsessed nation, Nigerians will remain susceptible to these kinds of threats.

They advised individuals to be vigilant and cautious when considering investment opportunities to protect themselves against these risks.

Phishing and Social Engineering

“Social engineering has remained one of the most powerful techniques used by threat actors for malicious purposes.

“Phishing, a social engineering attack, has evolved over the years. Despite widespread awareness of these types of attacks, many people are still susceptible to them, and our data shows that phishing attacks continue to be successful. In some cases, threat actors have even been able to use the InterPlanetary File System (IPFS) to host their phishing platforms, further increasing the likelihood of success.

“To protect against these types of attacks, it is important for individuals to be aware of the risks and to take steps to protect themselves, including being suspicious of unsolicited emails or messages, not clicking on links or downloading attachments from unfamiliar sources, and enabling two-factor authentication whenever possible.

SMEs Will Feel the Brunt of Cyber Threats More

According to reports, small and medium-sized enterprises suffered increased password stealing, Internet, and Remote Desktop Protocol (RDP) attacks in 2022, compared to 2021.

“This trend is very likely to continue in 2023. SMEs may be easier targets for cyber threat actors, and there are several reasons for this. Generally, small businesses have limited resources to invest in cybersecurity, may have fewer IT staff or less expertise in cybersecurity, and o en lack the level of security awareness that big organisations have.

“SMEs must be aware of the cyber risks associated with their business and take necessary steps to protect their systems.

Privacy Breaches by Online Money Lenders

“Digital money lending services, which offer short-term loans to individuals, were introduced in Nigeria to provide easy access to credit for ordinary people. However, many of these operators have been ignoring the Nigerian Data Protection Regulation (NDPR) and violating the data privacy rights of their customers. Reports suggest that they have been accessing the phone details of the family members of defaulted loanees without authorization and then contacting the family members via text messages containing threatening and derogatory content.

“This behaviour is a clear breach of data privacy rights and will likely continue if relevant regulatory institutions do not address it.

“To protect against data privacy violations in Nigeria’s digital money lending industry, regulatory bodies should enforce the Nigerian Data Protection Regulation (NDPR) and implement stricter penalties for violators. Consumers should also be educated on their data privacy rights and how to protect them. They should be cautious when taking out short-term loans, reviewing the terms and conditions to ensure their data will be protected.

Increased Cyber Attacks through Networks of Higher Institutions

“Unfortunately, it is common for higher education students to become involved in online scamming, o en using the networks and resources of their schools to launch their attacks.

“The long-term strikes and disruptions in the education sector in Nigeria may have contributed to an increase in the number of individuals participating in online scams, as some students may be seeking alternative sources of income.

“As a result of this trend, more online scams will likely be launched from behind the networks of higher education institutions in the country.

“Higher education institutions can mitigate the trend of online scammers exploiting their networks by educating students about the risks of online scams, implementing strong cybersecurity measures, monitoring and enforcing appropriate use of institutional networks, encouraging students to report suspicious activity, and working with law enforcement.

In conclusion, the authors believe that in 2023, Nigeria will face a range of cyber threats that will be perpetrated by threat actors using a variety of tactics, techniques, and procedures.

The threats will include large- scale propagation, and potential weaponization, of mis/disinformation, ransomware attacks, and phishing attacks, among others.

One of the main factors that are expected to influence the cyber threat landscape of 2023 is the general elections.

“To mitigate these threats, individuals, organizations, and relevant government bodies must adopt appropriate cybersecurity measures and strategies.

“Furthermore, all stakeholders must work together to ensure a concerted effort to protect the cyber sovereignty of the country. Cybersecurity is a collective responsibility”, the CSEAN report recommended.

CSEAN is a non-profit organisation centred on a collective purpose and vision to be a vehicle championing the cause and awareness of Information security best practices, acting as an agent of change to address Cyber Crime phenomena through engaging intellectual minds, business, and political leaders.

As Cyber Security protagonists, the body looks to hold a healthy debate to expand the audiences’ knowledge, awareness, and understanding of cyber-crime issues.

Through workshops and seminars, CSEAN shares knowledge and grows the information security industry in the country while creating youth forums to breed future generations of information security professionals and to hold broader discussions with government officials on tackling Cyber Crime.

The Authors: