Cybercrime Law in Nigeria: What You Need To Know

Table of Contents

Cybercrime Law in Nigeria

INTRODUCTION TO CYBERCRIME LAW IN NIGERIA

The proliferation of information and communication technologies has transformed social and economic interactions. However, it has also created opportunities for the commission of cybercrime in Nigeria and online fraud, which exploit digital systems to deceive, defraud, or harm victims. In Nigeria, activities such as phishing, identity theft, online impersonation, fraudulent transfer of funds, and unauthorised access to computer systems are pervasive and cause significant economic loss and reputational risk.[1] The legal challenge is to define, criminalise, investigate, and prosecute these offences effectively within a statutory framework. Yet, The primary piece of legislation in this area is the Cybercrimes (Prohibition, Prevention, etc.) Act 2015 (“Cybercrime Act”).

This act provides substantive offences and penalties for cybercrime in Nigeria. This article examines the scope of cybercrime and online fraud under Nigerian law, key statutory provisions, and how Nigerian courts and enforcement agencies (notably the Economic and Financial Crimes Commission – EFCC) address and prosecute these offences.

Legal Framework for Cybercrime Law in Nigeria

The cornerstone of Nigeria’s legislative response to cybercrime is the Cybercrimes (Prohibition, Prevention, etc.) Act, 2015 (“Cybercrime Act”). The cybercrime act provides a comprehensive legal regime for the prohibition, investigation, prosecution, and punishment of cybercrime across the federation.[2] The Act defines and criminalises various digital and online activities, including unauthorised access, data interference, computer-related forgery, and computer-related fraud.[3] It aligns Nigeria’s domestic law with international best practices and facilitates cooperation with foreign jurisdictions in combating cross-border cybercrime.[4]

The Cybercrime Act has been further strengthened by recent amendments, enhancing penalties for cyber offences and clarifying enforcement mechanisms. Although the core provisions of 2015 remain highly relevant.[5]

Key Cybercrime Law in Nigeria and Online Fraud Offences in Nigeria

1. Computer-Related Fraud (Section 14)

Section 14 of the Cybercrime Act criminalises computer-related fraud, where a person knowingly causes loss of property to another by altering, erasing, inputting or suppressing data held in a computer.[6] Subsection (2) specifically targets fraud committed by electronic messages which is often the mechanism in online scams with a penalty of not less than five years’ imprisonment and a fine of not less than ₦10,000,000, or both.[7] This provision captures classic online fraud schemes where perpetrators manipulate digital communication to induce victims to part with money.

For example, numerous defendants have been charged and convicted under Section 22(3)(b) (often paired with Section 14) of the Act for impersonating foreign nationals via email or social media with intent to defraud victims and obtain money.‍[8] Prosecutions in the Federal High Court have seen offenders sentenced to various terms of imprisonment and ordered to forfeit proceeds of the fraud.[9]

2. Computer-Related Forgery

Section 13 of the Cybercrime Act criminalises computer-related forgery. This is an act where a person accesses a computer and inputs or alters data intended to be considered authentic when it is not. This offence covers falsification of digital records meant to mislead victims, often occurring in conjunction with fraud. It is a cybercrime in Nigeria.

3. Unauthorised Access and Data Interference

Sections 6 and 8 target unauthorised access to computer systems and interference with data or system functionality. Offenders who access computer systems without authority or with intent to commit an offence can be imprisoned for up to five years or fined.[10] These provisions are crucial for combating hack-based components of online fraud, such as unauthorised hacking to obtain banking information or credentials.

4. Cybercafé-Related Offences (Section 7)

Under Section 7(2), anyone who perpetrates electronic or online fraud using a cybercafé commits an offence punishable by three years’ imprisonment or a fine or both. This provision addresses fraud conducted through shared public access points, recognising that cybercafés can facilitate crimes if not properly regulated.[11]

5. Phishing and Malicious Communications

Phishing and Malicious communications is also a cybercrime in Nigeria. Section 32 criminalises computer phishing, defined as using any electronic means to fraudulently obtain financial or sensitive information. The provision prescribes imprisonment terms and fines, reinforcing protection against deceptive online practices that lure victims into revealing banking details, passwords, or personal identification numbers for fraudulent purposes.[12]

Enforcement and Judicial Responses to Cybercrime in Nigeria(Cybercrime Law in Nigeria)

1. Prosecutions and Convictions

The Economic and Financial Crimes Commission (EFCC), Nigeria’s lead agency for combating economic and cyber offences, has actively prosecuted cybercrime and online fraud cases. Recent reports indicate multiple convictions secured in Enugu, Awka, and other jurisdictions, where internet fraud suspects pleaded guilty to offences under the Cybercrime Act following investigations and arrests. These convictions demonstrate that Nigerian courts are applying the Act’s provisions to penalise fraudulent electronic conduct.

In some instances, courts have ordered restitution to victims and forfeiture of assets obtained through fraud, underscoring both punitive and restorative aims of the law.[13]

2. Challenges in Adjudication

Despite statutory clarity, enforcement faces challenges. Courts often depend on electronic evidence including emails, chat logs, and transaction records which must satisfy admissibility requirements under the Evidence Act (e.g., authentication of electronic documents). Investigators also grapple with limited digital forensics capacity and technological expertise, which can impede evidentiary proof and consistent adjudication.[14]

Complementary Laws and Cross-Applicable Statutes on Cybercrime in Nigeria

While the Cybercrime Act is the primary statute, other laws supplement the legal framework against cyber-related fraud:

  • The Criminal Code Act (applicable in Southern Nigeria) and the Penal Code Act (in Northern Nigeria) define general offences such as obtaining property by false pretence, which may overlap with cyberfraud conduct when prosecuted outside purely digital-specific charges.[15]
  • The Advance Fee Fraud and Other Fraud-Related Offences Act criminalises advance-fee fraud (“419 fraud”), which often occurs through digital channels and is sometimes charged alongside Cybercrime Act offences.[16]

Impact and Enforcement Trends

Efforts by the EFCC and other agencies have led to large-scale operations against cybercrime syndicates, including arrests of hundreds of suspects involved in internet fraud schemes targeting victims domestically and internationally.[17] The increased operational activity reflects both the prevalence of online fraud networks and the state’s intensified response to curb their activities.[18]

However, enforcement gaps such as the uneven application of the law across jurisdictions and resource limitations affecting forensic capabilities hinder the full realisation of legal sanctions.[19]

Final things to know on Cybercrime Law in Nigeria

Cybercrime in Nigeria is addressed primarily through the Cybercrimes (Prohibition, Prevention, etc.) Act 2015, which criminalises a wide range of digital offences including computer-related fraud, forgery, unauthorised access, phishing, and cybercafé-facilitated fraud.

Key sections such as Sections 14, 22, 7, and 32 provide substantive offences with significant penalties aimed at deterring and punishing perpetrators. Successful prosecutions and convictions show the judiciary’s recognition of these offences and the application of the statutory framework. However, enforcement challenges, including evidentiary hurdles, technological capacity constraints, and forensic limitations, remain significant obstacles to the consistent administration of justice. But, strengthening institutional capacities, raising public awareness, and enhancing digital investigation skills are pivotal for curbing cybercrime in Nigeria and protecting online users in an increasingly digital Nigeria.

[1] Nigeria’s statutory framework for cybercrime is principally found in the Cybercrimes (Prohibition, Prevention, etc.) Act 2015, enacted to combat cyber and online fraud.

[2] The Cybercrime Act provides a unified legal, regulatory and institutional framework for prohibition, prevention, detection, prosecution and punishment of cybercrime.

[3] Offences include unauthorised access, system interference, unlawful interceptions, computer-related forgery and fraud.

[4] The Act facilitates international cooperation in cybercrime enforcement.

[5] Amendments to the 2015 Act enhance penalties and reporting requirements for cyber threats.

[6] Section 14 criminalises computer-related fraud, including altering, erasing or suppressing data with intent to defraud.

[7] Subsection (2) prescribes a minimum five-year term and fine not less than ₦10,000,000 for fraud by electronic messages.

[8] Federal High Court cases have seen convictions under Section 22(2)(b) of the Cybercrime Act for online impersonation and fraud.

[9] Convictions include imprisonment terms and restitution orders following electronic fraud prosecutions.

[10] Penalties include up to five years’ imprisonment or fine for unauthorised access.

[11] Cybercafé operators are also required to register and maintain user logs under the Act.

[12] Phishing involves fraudulent online solicitation of sensitive financial information for exploitation.

[13] Some convictions also involve asset forfeitures as part of sentencing.

[14] Investigative and forensic capacity limitations hinder effective enforcement.

[15] The Criminal Code Act and Penal Code Act may also apply to fraud committed via digital means.

[16] The Advance Fee Fraud and Other Fraud Related Offences Act complements cyber legislation for certain fraud types.

[17] Nigeria’s anti-cybercrime crackdowns have resulted in mass arrests of suspected internet fraud syndicates.

[18] Large operations have targeted romance scams, fake crypto investment networks, and other fraud schemes.

[19] Enforcement disparity and resource constraints affect consistency in prosecution across Nigeria.

Contributors

Ojienoh Segun Justice Esq. Cybercrime in Nigeria: A Powerful Legal Breakdown

OJIENOH SEGUN JUSTICE, ESQ.,

Lead Partner, EKO SOLICITORS & ADVOACATES

Bessie Obort Ofuka,

Bessie Obort Ofuka

Graduate Trainee, EKO SOLICITORS & ADVOCATES.

(Cybercrime Law in Nigeria, Cybercrime Law in Nigeria, Cybercrime Law in Nigeria, Cybercrime Law in Nigeria)

Want to keep up with our blog?

Our most valuable tips right inside your inbox, once per month.

Related Posts

SPECIFIC PERFORMANCE IN CONTRACT: THE IMPORTANT THINGS YOU NEED TO KNOW

LAW OF CONTRACT

PROCEDURE FOR REGISTERING A COMPANY IN NIGERIA: THE IMPORTANT THINGS YOU NEED TO KNOW

Company law, Compliance with the Law, General
jojobet girişJojobet GirişJojobet GirişCasibomMarsbahis GirişCasibom GirişHoliganbet Giriş
error: