In one of the most significant cybersecurity breaches to hit Africa in recent years, Globacom, Nigeria’s third-largest telecom provider, was hacked in July 2023, leading to widespread operational shutdowns and a ransom demand of $2.5 million, according to sources close to the incident.
The attack, first reported by TechCabal, left Globacom’s systems crippled for weeks. Employees couldn’t access emails or essential work applications, forcing internal teams to rely on WhatsApp for communications until early 2024.
Globacom’s customer service lines were also down, leaving millions of subscribers unable to contact support for over three weeks.
A $2.5 Million Ransom
While TechCabal’s report provided a detailed overview of the breach and its consequences, Web Security Lab has exclusively learned that the hackers behind the attack demanded $2.5 million in ransom to restore Globacom’s systems.
Despite the pressure, Globacom opted not to pay the ransom, a decision that likely prolonged the company’s operational disruptions.
The breach also exposed sensitive customer data, an outcome that raises serious privacy concerns.
Failure to Report
What makes this incident even more alarming is that Globacom did not report the breach to the Nigerian Communications Commission (NCC) as required under the Nigeria Data Protection Act 2023 which was signed into law about a month before it occurred.
Instead, the NCC, through its Cybersecurity Emergency Response Team (CERT), learned of the attack and had to approach Globacom directly.
The law mandates companies to report breaches within 72 hours, yet Globacom’s failure to act swiftly not only violated the Act but also put millions of customers’ data at further risk.
A Growing Cybersecurity Crisis in Africa
Globacom’s breach isn’t an isolated incident.
Africa is facing a wave of increasingly sophisticated cyberattacks.
In October 2024, Check Point Research (CPR) released new data on Q3 2024 cyberattack trends, revealing that Africa experienced the highest average weekly cyberattacks per organisation, with an average of 3,370 attacks, marking a 90% increase compared to the same period in 2023.
According to the United Nations Economic Commission for Africa (UNECA), the lack of preparedness for cyber threats could cost African countries up to 10% of their GDP annually.
The 2022/2023 threatscape report from Positive Technologies further highlights the vulnerability of the telecom sector, noting that 13% of cyberattacks in Africa target telecommunications companies, driven by the valuable customer data they possess.
The report also shows a significant rise in ransomware attacks, which exploit network vulnerabilities and weak configurations.
These attacks are becoming more complex, with a 74% increase in global cyberattacks, underscoring the urgent need for stronger defences and more proactive reporting from companies across the region.
Social engineering also remains a critical factor, involved in 52% of successful attacks on organizations in Africa, further highlighting the vulnerability of businesses without adequate cybersecurity protocols.
The attack on Globacom highlights a troubling trend of secrecy when companies are breached, further exacerbating the damage to consumer trust.
Failure to disclose such incidents not only violates legal obligations but also delays coordinated efforts to mitigate harm.
As Africa’s digital infrastructure continues to expand, so too does the responsibility of corporations to protect consumer data and respond quickly in the face of cyber threats.
This breach underscores the need for a coordinated national cybersecurity strategy, where companies, regulators, and governments work together to ensure swift reporting and stronger defences.
