@csrf
Police officer

14.04.2024 Featured SPOTTED: Nigeria Police Website for Reporting Cybercrime Is Unsafe

Published 14th Apr, 2024

By Timileyin Akinmoyeje

The Nigeria Police Force’s web portal dedicated to reporting cybercrime is unsafe and violates the guidelines stipulated by the National Information Technology Development Agency (NITDA for government websites, FIJ can report.

When FIJ checked on Saturday, there was no sign of security encryption on the website’s Uniform Resource Locator (URL).

This can be confirmed by the conspicuous absence of the Secure Socket Layer (SSL) in the URL. That is, the portal’s link only has the Hypertext Transfer Protocol (HTTP); it doesn’t have the ‘S’.

READ ALSO: ALERT: XpressVerify, a Private Website, Has Access to Registered Nigerians’ Data and Is Making Money From It

By implication, information submitted, sent or received through this website is not encrypted. Nigerians who use the website may be giving away their personal information to phishers and cybercriminals.

Anyone trying to gain access to the portal will get a prompt from their website browser warning them of potential cyber attacks if they have safety features enabled.

READ ALSO: VIDEO: IBD Dende Threatens to Kill Customs Officer for Seizing His Smuggled Goods

Cloudflare, which provides security services to about 20 percent of internet users, recommends that a website enables the SSL to prevent just anyone from reading server requests and the corresponding responses on a webpage.

But beyond Cloudflare or Google’s recommendation, Section 7.2 of the NITDA Standard and Guidelines for Government Websites mandates all government websites to use technologies like the SSL to encrypt information wherever necessary.

Inactive Phone Numbers and e-mails on the NCS Website Violate NITDA Guidelines

In its guideline documents, NITDA specifically recommends the use of the SSL to ensure that government websites are protected from cybercriminals at all times.

“Government Institutions shall: i. ii. iii. Commit to a continuous process of maintaining the security of Web Servers to ensure continued security. Use authentication and cryptographic technologies as appropriate to protect certain types of sensitive data with differing access privileges. It is recommended that SSL be used for any cryptographic implementation,” the guidelines read.

All attempts to reach the cybercrime unit of the NPF on Saturday proved abortive. FIJ called the designated phone number three times, but none of these calls was answered.

Leave a Reply

Your email address will not be published. Required fields are marked *


Published 14th Apr, 2024

By Timileyin Akinmoyeje

Advertisement

Our Stories

Nigerian Law Criminalises Civilians Wearing Military Camouflage Except…

Police Exhume Christianah Idowu’s Body, Conduct Autopsy

Arik Air

Travel Consultant in Debt Over N200,000 Hanging Between Arik Air, PandaPay Since June

Biobag Designer Wins The Destiny Trust’s 2024 Kids Innovation Challenge

REPORT: Despite Easing Inflation Rate, Rent, Health and Transport Costs on Upward Trend

Christopher Musa, Chief of Defence Staff (CDS)

Chief of Defence Staff Tells 26 Soldiers to Share N1m for Killing Terrorist With N5m Bounty

DSS

MRA Kicks As DSS Harasses Community Leader Who Demanded Details of Dangote’s $100m Payment to Lagos Govt

Maiduguri flood

River Basin Authorities Burn N2.98b on Sewing Machines, Streetlights While Floods Hit States Hard

Escaped prison inmates

NCoS Mute on Efforts to Retrieve 281 Inmates Who Escaped Borno Prison After Flooding

One of the bullets picked up after the shooting.

Asari Dokubo ‘Led Boys’ to Disrupt IYC Election in Rivers. At Least 7 Died

Advertisement