CYBER CRIME

Introduction

Cybercrime is a global phenomenon that poses significant threats to the ecosystem and international reputation of affected nations. With the rapid expansion of internet usage across nearly every sector of society, the occurrence of cybercrime has become almost inevitable. Cybercrimes refer to illegal activities committed online using computers or networked devices as tools or targets, victimizing individuals and organizations alike. Common examples include banking fraud, the use or possession of hardware and software for illicit activities, malware distribution, spam/phishing attacks, identity theft, cyber terrorism, cyberstalking, denial of service (DoS) attacks, and spoofing.

Legal Framework and Policies in Nigeria

In response to the growing menace of cybercrime, Nigeria has extended and refined its legal framework to combat these threats. Various laws and policies have been implemented to monitor, detect, prevent, mitigate, and manage cybercrime incidents within the country. Key legislations on this subject matter include:

• The 1999 Constitution of the Federal Republic of Nigeria (as amended)
• The Cybercrimes (Prohibition and Prevention, etc.) (Amendment) Act, 2024
• Nigeria Data Protection Act, 2023 (NDPA)
• The Advance Fee Fraud and Other Related Offences Act, 2006
• Terrorism (Prevention and Prohibition) Act, 2022
• NCC Guidelines for the Provision of Internet Service
• Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions, 2022
• The Economic and Financial Crimes Commission (Establishment, etc.) Act, 2004
• The Money Laundering (Prevention and Prohibition) Act, 2022
• Nigerian Communications Commission Act, 2003

Regulatory Authorities and Cybersecurity Initiatives

Regulatory bodies such as the Nigeria Communications Commission (NCC) have taken proactive steps to combat cybercrime. The NCC, for example, has established a Computer Security Incident Response Team (CSIRT) responsible for issuing warnings and publications to inform the public about software commonly used by cybercriminals to commit fraud. In 2022, the Central Bank of Nigeria (CBN) issued the Risk-Based Cybersecurity Framework and Guidelines for Other Financial Institutions. This framework mandates financial institutions to implement robust cybersecurity programs designed to combat modern cyberattacks.

The Cybercrimes (Amendment) Act, 2024

The Cybercrimes (Amendment) Act, 2024, plays a crucial role in promoting cybersecurity and preventing cybercrime. The Act assigns the National Security Adviser to coordinate with law enforcement agencies (LEAs) and the Attorney General so as to oversee and strengthen the legal and institutional framework. It also establishes a Cybercrime Advisory Council to facilitate effective implementation, capacity building, multi-stakeholder engagement, and inter-agency/international cooperation. Notably, Section 3 of the Act mandates the establishment of Sectoral National Computer Emergency Response Teams (CERTs) and Sectoral Security Operations Centers (SOC), under the administration of the CERT Coordination Center. Both public and private entities, including ISPs, telecommunications operators, and financial institutions, are required to report any cyberattacks or disruptions that could hinder the functioning of another computer system or network to the CERT Coordination Center, enabling timely and appropriate responses.

Corporate Compliance and the Importance of Cybersecurity

These laws and frameworks apply to all corporate organizations and digital systems conducting business in Nigeria. Each organization is strictly mandated to adhere to the cybersecurity guidelines, policies, and regulations outlined by these laws. The primary goal is to establish and monitor parameters for all activities in cyberspace, ensuring the protection of data and property for individuals, organizations, and the government. This collective effort aims to reduce and ultimately eradicate cybercrime within the nation.

Conclusion

Cybercrime is a pervasive threat that must be eradicated or significantly reduced in Nigeria. The country’s evolving cyber laws and frameworks have the potential to safeguard the nation from cyber threats, fostering a safer and more secure cyberspace for both authorities and citizens.