The National Data Protection Commission (NDPC) reported that more than 1,500 cyber‑attack attempts were detected within a short timeframe, prompting the temporary shutdown of its network as a precautionary measure. The commissioner, Dr Vincent Olatunji, made the disclosure during an interview with the News Agency of Nigeria on the sidelines of a data‑protection training programme in Lagos.
According to Dr Olatunji, the influx of sophisticated threats forced the NDPC to block external access to its systems until security controls could be reinforced. “The shutdown was a preventive step to stop the attackers from succeeding,” he said. He added that cyber threats have become persistent and increasingly complex, requiring organisations to adopt continuous, proactive security practices. “Cyber‑attacks are no longer occasional; they are constant. Organisations must monitor their systems round the clock and keep security protocols up to date,” he warned.
A further challenge highlighted by the commissioner is the shortage of qualified Data Protection Officers (DPOs). The Nigeria Data Protection Act obliges organisations to appoint DPOs, creating a growing demand for certified professionals that outpaces supply. “There is a significant gap between demand and supply of skilled personnel. This training is designed to prepare participants not only for certification but also to fill that gap effectively,” Dr Olatunji explained.
The NDPC’s ecosystem, which operates under a public‑private partnership (PPP) model, has reportedly generated more than US$10 million in value and over ₦7 billion in government revenue from fees and fines. Beyond the financial impact, the commission says the framework has enhanced Nigeria’s international reputation and boosted investor confidence in the country’s data‑management standards.
On the issue of ransomware, Dr Olatunji cautioned organisations against paying ransoms, asserting that payment only emboldens attackers. “The focus should be on strengthening systems to prevent breaches,” he urged.
Training facilitator Dr Taiwo Oyeleye said the programme would equip participants with both theoretical knowledge and practical skills in data protection and privacy. “Attendees will gain a clear understanding of data‑protection principles, organisational frameworks and technical safeguards required to secure sensitive information,” Oyeleye stated, adding that the cohort is expected to help close awareness and capacity gaps across sectors.
Wole Jacobs, another facilitator, called for stronger collaboration between the NDPC and the National Information Technology Development Agency (NITDA) to confront emerging cyber threats. He emphasized that continuous learning and adherence to global best practices are essential for safeguarding personal and sensitive data and for supporting Nigeria’s broader digital transformation agenda.
The NDPC’s recent experience underscores the urgency of robust cyber‑security measures and the need for skilled data‑protection professionals as Nigeria continues to expand its digital economy.
