The Federal Government of Nigeria has announced plans to introduce a new cybersecurity framework aimed at addressing the growing threat of artificial intelligence-driven cyber attacks across the country.
The framework, which is expected to be launched within the year, is designed to strengthen Nigeria’s digital security architecture as cyber criminals increasingly deploy artificial intelligence tools to carry out more sophisticated attacks on banks, businesses, and government institutions.
According to the Director-General of the National Information Technology Development Agency (NITDA), Kashifu Inuwa Abdullahi, the rapid adoption of digital technologies has exposed critical gaps in cybersecurity preparedness, especially as AI now enables cyber attackers to automate fraud, phishing, and system breaches at scale.
Key Features of the New Cybersecurity Framework
Under the proposed framework, organisations operating in Nigeria will be required to meet specific cybersecurity standards to reduce risks and improve resilience. One of the major provisions includes setting minimum cybersecurity investment thresholds, ensuring that both public and private institutions dedicate adequate resources to protecting their digital systems.
The framework will also introduce mandatory timelines for reporting cyber breaches. This measure is intended to promote transparency, speed up response efforts, and limit the spread of cyber incidents once they occur.
Another critical component is the establishment of a threat-intelligence sharing system. Through this mechanism, government agencies and private sector organisations will be able to exchange real-time information on emerging cyber threats, making it easier to detect and neutralise attacks early.
Why the Framework Is Necessary
Nigeria’s financial and digital ecosystems have become prime targets for cyber criminals due to increased online transactions, fintech growth, and the expansion of e-government services. Many organisations, however, still underestimate their exposure to cyber risks and often invest minimally in cybersecurity until an incident occurs.
With AI tools now being used to create highly convincing phishing messages, automate malware attacks, and exploit system vulnerabilities, regulators believe stronger and enforceable cybersecurity rules are urgently needed.
Reports estimate that Nigeria has lost trillions of naira to cybercrime over the years, affecting banks, telecommunications firms, and public institutions. The new framework is expected to help reduce these losses by enforcing preventive measures rather than reactive responses.
How It Fits Into Existing Policies
The planned cybersecurity framework will build on existing policies such as the National Cybersecurity Policy and Strategy, while introducing more practical and enforceable requirements. Unlike previous guidelines, the new framework is expected to focus on compliance, accountability, and coordinated response across sectors.
Industry experts believe this move aligns Nigeria with global best practices, as governments worldwide are updating cybersecurity regulations to reflect the increasing role of artificial intelligence in cybercrime.
What This Means for Nigerians
For businesses, the framework will likely lead to higher cybersecurity compliance costs, but it also promises improved trust, reduced financial losses, and stronger protection of customer data. For individuals, it could mean safer online banking, better data privacy, and reduced exposure to digital fraud.
As Nigeria continues its digital transformation, the success of the framework will depend on effective enforcement, stakeholder cooperation, and continuous adaptation to evolving cyber threats.