NDPC reports 1,500 cyberattack attempts, warns of gaps in Nigeria’s data protection ecosystem

The National Data Protection Commission (NDPC) has revealed that it recorded more than 1,500 cyberattack attempts within a short period, underscoring growing threats to Nigeria’s digital infrastructure.

The National Commissioner, Vincent Olatunji, disclosed this during an interview on the sidelines of a data protection training programme in Lagos.

Olatunji explained that the scale and frequency of the attacks forced the commission to temporarily shut down its network as a precautionary measure to prevent potential breaches.

According to him, the incident exposed critical vulnerabilities within Nigeria’s data protection ecosystem and highlighted the urgent need for stronger cybersecurity frameworks.

“Cyberattacks are no longer occasional; they are constant. Organisations must monitor their systems round the clock and remain up to date with security protocols,” he said.

He identified a shortage of qualified Data Protection Officers (DPOs) as a major challenge, noting that many organisations lack the capacity to adequately safeguard sensitive data.

The commissioner explained that the Nigeria Data Protection Act mandates organisations to appoint DPOs, thereby increasing demand for trained professionals.

“There is a significant gap between demand and supply of skilled personnel. This training is aimed at preparing participants not just for certification, but to fill that gap effectively,” he added.

Despite these challenges, Olatunji noted that Nigeria’s data protection sector has recorded measurable growth under a Public-Private Partnership model, generating over $10m in value and more than N7bn in government revenue through fees and regulatory fines.

He said the progress has also improved Nigeria’s global reputation in data governance and boosted investor confidence.

On ransomware attacks, Olatunji warned organisations against paying attackers, stressing that such actions only encourage further cybercrime.

“Once you pay, you empower attackers. Prevention remains the most effective strategy,” he cautioned.

Also speaking, a training facilitator, Taiwo Oyeleye, said the programme would equip participants with both theoretical and practical knowledge needed to secure sensitive information and implement effective data protection systems.

Another facilitator, Wole Jacobs, called for stronger collaboration between the NDPC and the National Information Technology Development Agency (NITDA) to tackle emerging cyber threats.

He emphasised the importance of continuous learning, awareness, and adherence to global best practices in strengthening Nigeria’s digital security landscape.