The National Data Protection Commission (NDPC) has disclosed that it recorded more than 1,500 cyberattack attempts within a short period, forcing the commission to temporarily shut down its network to prevent possible breaches.
The National Commissioner of the commission, Vincent Olatunji, revealed this on Thursday during an interview with the News Agency of Nigeria on the sidelines of a data protection training programme in Lagos.
Olatunji said the decision to temporarily suspend the commission’s network operations was taken as a precautionary measure to frustrate the attackers and protect sensitive information.
He warned that cyber threats have become increasingly frequent and sophisticated, requiring organisations to adopt stronger and continuous security measures.
“Cyberattacks are no longer occasional; they are constant. Organisations must monitor their systems round the clock and remain up to date with security protocols,” he said.
The NDPC boss noted that the incident exposed critical gaps in Nigeria’s data protection ecosystem, particularly the shortage of qualified Data Protection Officers (DPOs) needed to safeguard sensitive information across public and private institutions.
According to him, the Nigeria Data Protection Act makes it mandatory for organisations to engage Data Protection Officers, thereby increasing demand for certified professionals in the sector.
“There is a significant gap between demand and supply of skilled personnel,” Olatunji said.
“This training is designed to prepare participants not just for certification, but to fill that gap effectively.”
He disclosed that Nigeria’s data protection ecosystem has witnessed remarkable growth under the Public-Private Partnership model, generating over $10 million in value while contributing more than N7 billion to government revenue through fees and fines.
“Beyond revenue, it has strengthened Nigeria’s global reputation and boosted investor confidence in how data is managed and protected,” he stated.
On the growing threat of ransomware attacks, Olatunji advised organisations against yielding to attackers’ demands.
“Once you pay, you empower attackers. The focus should be on strengthening systems to prevent breaches,” he warned.
Also speaking at the training, facilitator Taiwo Oyeleye said the programme was designed to provide participants with both theoretical and practical understanding of data protection and privacy principles.
“They will gain a clear understanding of data protection principles, organisational frameworks and technical safeguards required to secure sensitive information,” he said.
Oyeleye expressed optimism that participants would help close existing knowledge and capacity gaps across sectors.
Another facilitator, Wole Jacobs, called for closer collaboration between the NDPC and the National Information Technology Development Agency (NITDA) to tackle emerging cyber threats.
Jacobs said stronger partnerships and continuous learning would be critical to enhancing Nigeria’s digital resilience and ensuring adherence to global best practices in data security.
He added that sustained awareness campaigns and capacity-building initiatives would further strengthen the country’s digital transformation agenda while safeguarding personal and sensitive information.