National Data Protection Commission (NDPC) has revealed that it recorded over 1,500 cyberattack attempts within a short period, exposing critical gaps in Nigeria’s data protection ecosystem.
NDPC
The National Commissioner of NDPC, Dr. Vincent Olatunji, disclosed this in an interview with the News Agency of Nigeria (NAN) on the sidelines of a data protection training programme in Lagos.
Olatunji said the surge in cyberattacks forced the commission to temporarily shut down its network as a security measure to prevent hackers from breaching its systems.
Read Also: NDPC Probes Digital Loan Operators Over Alleged Data Privacy Violations
“This temporary shutdown was a preventive move to stop the attackers from succeeding; it underscores how serious the threats have become,” he said.
Olatunji said cyber threats had become persistent and increasingly sophisticated, requiring organisations to adopt proactive and continuous security measures.
“Cyberattacks are no longer occasional; they are constant. Organisations must monitor their systems round the clock and remain up to date with security protocols,” Olatunji said.
He stressed that entities handling personal and sensitive data must implement robust cybersecurity frameworks, regular audits and incident‑response plans to reduce exposure.
The NDPC commissioner highlighted the acute shortage of qualified Data Protection Officers (DPOs) as a major challenge in Nigeria’s data protection landscape.
He said the Nigeria Data Protection Act mandates organisations to appoint DPOs, creating a surge in demand for certified professionals that the current workforce cannot meet.
“There is a significant gap between demand and supply of skilled personnel. This training is designed to prepare participants not just for certification, but to fill that gap effectively,” he said.
Olatunji said Nigeria’s data protection ecosystem had recorded notable growth under a Public‑Private Partnership (PPP) model, generating over 10 million dollars in value.
He also revealed that the framework had generated more than seven billion naira in government revenue through registration fees and fines.
“Beyond revenue, it has strengthened Nigeria’s global reputation and boosted investor confidence in how data is managed and protected,” he said.
On ransomware attacks, Olatunji warned organisations against paying ransoms, stressing that payment emboldened cybercriminals and encouraged further targeting.
“Once you pay, you empower attackers. The focus should be on strengthening systems to prevent breaches, having backup plans, and responding swiftly when incidents occur,” he said.
He urged both public and private institutions to prioritise resilience over quick fixes when dealing with cyber extortion.
Facilitator Dr. Taiwo Oyeleye said the ongoing training programme was designed to equip participants with both theoretical and practical knowledge of data protection and privacy.
“They will gain a clear understanding of data protection principles, organisational frameworks and technical safeguards required to secure sensitive information,” he said.
Oyeleye expressed confidence that participants would help bridge existing awareness and capacity gaps across sectors such as finance, health, telecommunications and government services.
Also Read: BREAKING: NDPC Steps in as Alleged Data Breach Hits CAC Systems
Another facilitator, Mr. Wole Jacobs, advocated for stronger collaboration between the NDPC and the National Information Technology Development Agency (NITDA) to confront emerging cyber threats.
Jacobs said the training would enhance participants’ capacity to protect data, promote awareness and contribute to Nigeria’s digital‑transformation agenda.
He emphasised the need for continuous learning and adherence to global best practices in cybersecurity and data‑privacy standards.
