CYBERSECURITY | Nigeria’s ‘most dangerous’ Internet user traced to Niger State

CYBERSECURITY | Nigeria’s ‘most dangerous’ Internet user traced to Niger State

CYBERSECURITY | Nigeria’s ‘most dangerous’ Internet user traced to Niger State

0

The most malicious Internet user in Nigeria, revealed in the Nigerian Cybersecurity Report 2016, has been traced to Suleja in Niger State.

The Nigerian Cybersecurity Report 2016, a landmark survey of the security landscape for the Nigerian Internet community, has revealed five Internet Protocol (IP) addresses alleged to cause the most malice in cyberspace.

According to the Nigerian Cybersecurity Report 2016, the five most dangerous users account for the most “total bad events” on the Internet, which the authors refer to as all the malicious activities carried out over the Internet ranging from spamming, denial of service (DoS), phishing, spoofing, among others.

Using online IP tracking tools, the IP address topping malicious Internet activities carried out in Nigeria was traced traced to Suleja in Niger State, by this author.

The IP address, 41.222.208.33, is revealed by the Nigerian Cybersecurity Report 2016 to be the top IP address in total malicious events, total spam servers, top dictionary attackers and top comment spammers.

Other malicious IP addresses in Nigeria revealed by the Nigerian Cybersecurity Report 2016 and traced by Technology Times are:  41.184.122.84 from Ibadan, Oyo State (ISP:  IPNX Nigeria Ltd); 41.203.89.37 from Benin City, Edo State (ISP: Globacom); 62.173.38.236 from Lagos (ISP: IPNXng); and 41.206.30.194 from Kaduna, Kaduna State (ISP: MTN Nigeria).

The Nigerian Cybersecurity Report 2016 researched, analysed, compiled and published by the Serianu Cyber Threat Intelligence Team in partnership with Demadiur Systems Limited and the USIU’s Centre for Informatics Research and Innovation (CIRI), at the School of Science and Technology. Nigerian Cybersecurity Report 2016 used data from Project Honeypot Intelligence analysis, according to authors of the survey.

Total Bad Event refer to all the malicious activities carried out over the Internet including spamming, DoS, Phishing, Spoofing etc.

The table below show the Total Bad Event ranking by the malicious IP addresses as revealed by Nigerian Cybersecurity Report 2016:

IP Address Location ISP Ranking %
41.222.208.33 Suleja, Niger State Galaxy Backbone PLC 53
41.184.122.84 Ibadan, Oyo State IPNX Nigeria Ltd 21
41.203.89.37 Benin City, Edo State Globacom 14
62.173.38.236 Lagos IPNXng 8
41.206.30.194 Kaduna, Kaduna State MTN Nigeria 4

The Cybersecurity Report also shows that comment spamming on the Internet has topped Nigerian cyber threat activities with 4157 comment spams.

Comment spamming is an act of posting unsolicited advertisements or hyperlinks as comments on forums, blogs, wikis and online networks. These hyperlinks are usually links to malicious websites, and abusive or otherwise unwanted information.

Photo file shows a man being arrested by the Nigerian Police

Commenting on the report, Dr. Nwonyi Polycarp Emeka, Manager Intelligence, Police Special Fraud Unit (PSFU) Force Criminal Investigation and Intelligence Department, Lagos, says that “over my 20 plus years of being involved in cyber security and electronic fraud investigation and prosecution, there has never been a time with major cybercrime upswing like the past few years. The reason for this can be attributed to poverty, adventurism, disgruntled revenge, bad socio-economic/political policies, negative/failed religio-cultural norms, and unemployment. The recent launch of the cashless policies as well as growing e-business solutions in the country has further exasperated this situation.”

 

The other categories of cyber threat studied in the research are Malicious IP (having 3909 activities), Top Dictionary Attackers IP (having 932 activities) and Spam Server-Emails (with 3202 activities).

Comment Spammers do not send email spam, instead they post to blogs and forums. These posts typically include links to sites being promoted by the comment spammer. The purpose of these links is both to drive traffic from human clicking on the links, as well as to increase the search engine rankings which are sometimes based on the number of links to a page, authors of the Nigerian Cybersecurity Report 2016 say.

According to the report. within the past few years, the estimated cost of cybercrime in Nigeria has soared to $550 million. This cost continues to grow as many organisations are automating their processes. Sectors like the electronic financial services and e-commerce have particularly become major focus of attack, report says.

Highlighting some of the factors that led to the increase in cybercrime in the country, the report pointed at insufficient technical training of employees. The increase in the number of home grown cyber criminals is not because they are more talented, but because they are more creative, patient, single minded and they explore limitless pathways, according to the Nigerian Cybersecurity Report 2016 which notes that such curiosity and creativity is not being explored by Nigerian organisations.

Mr. Godwin Emefiele, Governor of the Central Bank of Nigeria (CBN), undergoing a biometric verification exercise
Cashless Nigeria opening new vista for cybercrime….File photo shows Mr. Godwin Emefiele, Governor of the Central Bank of Nigeria (CBN), undergoing a biometric verification exercise

Also, low security budget in most organisations was cited to have contributed to low security awareness. Numerous breaches seen with the past few years have been attributed to compromised employees, making insider threat the largest contributor of direct losses in cybercrime, according to the Nigerian Cybersecurity Report 2016.

The survey shows that 55% of organisations in Nigeria do not regularly train their staff on cyber security, or only give training only when an incident occur, while 14% never give training at all.

It also shows that over 56% of organizations allow the use of ‘bring your own device (BYOD) at the work places, with 34.7% not having best practices for the BYOD policy.

Commenting on the report, Dr. Nwonyi Polycarp Emeka, Manager Intelligence, Police Special Fraud Unit (PSFU) Force Criminal Investigation and Intelligence Department, Lagos, says that “over my 20 plus years of being involved in cyber security and electronic fraud investigation and prosecution, there has never been a time with major cybercrime upswing like the past few years. The reason for this can be attributed to poverty, adventurism, disgruntled revenge, bad socio-economic/political policies, negative/failed religio-cultural norms, and unemployment. The recent launch of the cashless policies as well as growing e-business solutions in the country has further exasperated this situation.”

According to him, lack of adequate cyber threat prevention infrastructure and logistics as well as the absence of a strong legal framework that guarantees timely prosecution of identified cases has further encouraged people to get involved in cybercrime.

While stating that the private sector has also not done enough in the nation’s fight against cybercrime, Emeka says that government also need to direct its focus on human resources, capacity building and legal and legislative reviews of the current laws, saying it is the key to reducing cybercrime in Nigeria.

“Rather than looking at this as a collective problem to be addressed by all, many still see the solution to identify and fight cybercrime as an exclusive preserve of the government. However, it has been found that the biggest source and victim of cybercrime are individuals and corporate entities in the private sector. The private sector has simply not done enough investment in fighting cyber crime.

“The government needs to do more in the area of legislative revamp in empowering stakeholders like law enforcement agencies on capacity building, and encouraging synergy among the various agencies. Research grants needs to be established for training and empowerment of the public on cyber security services,” he adds.

The aim of the Nigerian Cyber Security Survey was to explore the evolving threat landscape and and the thousands of cyber-attacks that have been forged against individuals, SMEs and large organizations within Nigeria, according to the authors. The report was prepared based on data collected from a survey of over 300 respondents across organisations in Nigeria, both the public and private sector.

Success Kafoi Journalist at Technology Times Media. Mobile: 08077671673 email: success.kafoi@technologytimes.ng

LEAVE YOUR COMMENT

Your email address will not be published. Required fields are marked *

fifteen − seven =

%d bloggers like this: