The cyber-security threat landscape in Africa is littered with the same vulnerabilities and threats as faced in Europe, but the regulatory and services infrastructure is lagging behind.
Nigeria will experience evolving ransomware and cloud-based attacks this year as more organisations migrate from their infrastructures and platforms to the cloud, said Tope Aladenusi, head of cyber-risk services at Deloitte Nigeria.
According to Nigeria’s 2017 Cybersecurity Outlook by Deloitte, Nigeria will face increased cases of ransomware attacks targeting fast growing SMEs, and more cyber-criminals are likely to shift their focus from individual organisations to cloud service providers.
“This puts a huge burden on organisations as there would be difficulty in monitoring an organisation’s perimeter as their security administrators may have limited control over issues from the cloud,” Aladenusi told SC Media UK.
Government is not prepared for constantly changing cyber-crime as it lacks a realistic strategy, said Remi Afon, national president at the Cyber Security Experts Association of Nigeria (CSEAN).
Remi also called on the government to enact laws to protect cyberspace users in the country, such as a data protection law, saying government and private organisations face a highly threatening environment with data breaches that are constantly on a rise in the country.
Aladenusi also warned of the growing problem of cyber ponzi schemes due to the country’s economic situation. There are no local laws regulating such schemes, which may end up causing severe financial losses to thousands of citizens.
The year 2017 will also see growth in the use of analytics and threat intelligence techniques and solutions to proactively disrupt cyber-attacks, Aladenusi said, adding that for such solutions to be effective, non-stop intelligence information gathering and monitoring processes will be required.
“We are likely to see built-in, advanced, antivirus-evading features and ability to rapidly spread across networks before detection,” he added.
Deloitte also confirmed that, last year, the country registered an increased number of sophisticated phishing attacks mainly to financial institutions and utility companies.