Nigeria has climbed to 11th place among the world’s most cyberattacked nations, up from 13th in the previous ranking, according to Check Point Software Technologies’ January 2025 Global Threat Index.
The report highlights FakeUpdates malware as a major cyber threat driving large-scale ransomware attacks across Africa. This malware, first detected in 2018, spreads through deceptive browser update prompts on compromised websites, allowing hackers to infiltrate systems and deploy ransomware.
Nigeria Faces Growing Cyber Threats
Among the 109 countries surveyed, Nigeria recorded a 62.7% Normalised Risk Index, placing it just outside the top 10 most targeted nations. Other African countries in the global top 20 include:
- Ethiopia – 1st (100%) – Most attacked country globally
- Zimbabwe – 5th (77.7)
- Angola – 9th (66.1)
- Uganda – 10th (64.5)
- Kenya – 14th (59.4)
- Ghana – 16th (58.9)
- Mozambique – 17th (57.9)
While Nigeria’s cyber threat ranking has worsened, South Africa dropped three spots to 66th, and Egypt ranks 97th, making it the least targeted country in Africa.
FakeUpdates Malware at the Centre of Attacks
Security experts warn that FakeUpdates is the preferred tool for cybercriminals, enabling large-scale ransomware attacks. A recent investigation revealed that an affiliate of the ransomware group RansomHub used a Python-based backdoor to maintain access and deploy ransomware.
AI is Making Cybercrime More Dangerous
Maya Horowitz, VP of Research at Check Point Software, noted that AI is revolutionising cyberattacks, allowing criminals to automate and scale their tactics. She urged Nigerian businesses, organisations, and individuals to adopt AI-powered cybersecurity measures to stay ahead of evolving threats.
Other Malware Targeting Nigeria
Besides FakeUpdates, the report highlights other rising cyber threats:
- Formbook – An infostealer that captures login credentials and logs keystrokes.
- Remcos – A Remote Access Trojan (RAT) that exploits Windows vulnerabilities.
- Anubis – A banking trojan that bypasses multi-factor authentication.
- AhMyth – A RAT disguised as legitimate apps to steal sensitive data.
- Necro – An Android malware that executes malicious components.
Most Targeted Sectors in Nigeria
The education, government, and telecommunications sectors are the most targeted industries. Among ransomware groups, Clop (10%), FunkSec (8%), and RansomHub (7%) were the most active.
Nigeria Must Strengthen Its Cyber Defences
With the rise in cyberattacks, Nigerian businesses and individuals must take proactive security measures, including:
- Avoiding suspicious links and software updates from unknown sources.
- Using multi-factor authentication to protect sensitive accounts.
- Keeping software and security systems updated.
- Investing in AI-driven cybersecurity solutions to detect and prevent attacks.
The report underscores the urgent need for stronger cybersecurity awareness and defences in Nigeria to protect its digital economy and critical infrastructure.
Credit: TechEconomy (Text Excluding Headline)
