This paper reports the findings from a research project on cyber security in the Nigerian Internet banking industry, by presenting the main cyber security breaches it has experienced, along with its cyber security capability and practices. An online survey was conducted with 100 experienced professional working in both the Nigerian banking and banking security service sectors. Our findings reveal a transformation of the Nigerian cybercrime industry from low-tech cyber-enabled crimes to high-tech sophisticated breaches, with viruses, worms or Trojan infections; electronic spam mails; and hacking being the top three most experienced breaches. In term of cyber security practices, banking professionals have received adequate management in both support and training. The lack of advanced technologies to prevent and address cyber security breaches and the unsatisfactory level of legislative compliance, together, appear to be the primary factors that have reduced cyber security capability in our sample of banks.

本文通过介绍尼日利亚经历的主要网络安全漏洞及其网络安全能力和实践，报告了尼日利亚互联网银行业网络安全研究项目的发现。对尼日利亚银行业和银行安全服务业的100名经验丰富的专业人员进行了在线调查。我们的发现表明，尼日利亚的网络犯罪行业已经从低端的网络犯罪转变为高科技的复杂漏洞，包括病毒，蠕虫或特洛伊木马病毒感染。电子垃圾邮件；而骇客入侵则是最有经验的三大漏洞。在网络安全实践方面，银行专业人士在支持和培训方面都得到了适当的管理。