Africa’s largest internet market, Nigeria, has recorded an 85% decline in account data breaches in the first quarter of 2025, a new report by cybersecurity firm Surfshark, as culled by TechCabal, has it. Compared to the final quarter of 2024, Africa’s most populous country reported 119,000 compromised accounts between January and March 2025, down sharply from 786,317 breaches.
The Surfshark report, compiled from over 29,000 public databases, shows that the total number of compromised accounts globally dropped by 93%, from 973.7 million in Q4 2024 to 68.3 million in Q1 2025. According to TechCabal, the most affected countries are the United States, with 16.9 million breaches, Russia, with 4.4 million, India, with 4.2 million, Germany, with 3.9 million, and Spain, with 2.4 million.
The report states that Nigeria still ranks 34th globally and third in Sub-Saharan Africa, but the impressive drop might be the turning point for digital safety in Nigeria, whose digital economy has been tainted by rising cyber threats and inadequate consumer protection. The stark drop in breaches also suggests meaningful progress in protecting everyday users, particularly those most vulnerable to cybercrime.
According to Financial Nigeria, since 2004, Nigeria has recorded over 7 million compromised accounts, bringing the country’s record to a total of 23.2 million account breaches in Sub-Saharan Africa. The country also had 13 million citizens’ passwords leaked over the years. As such, the reported decline in breaches is a testament to Nigeria’s progress in cybersecurity.
The 85% drop in account breaches in Nigeria in Q1 2025 can be attributed to several factors, reflecting improvements in digital security and regulatory enforcement, alongside global trends. For one, the sharp decline in breaches signals that Nigerian businesses are increasingly adopting stronger cybersecurity practices to protect user data, suggesting more robust defences against cyberattacks and better protection of consumer information.
The decline could also be mainly attributed to changes in enforcement. Starting in 2025, the Nigerian Data Protection Commission (NDPC) began prosecuting data privacy offenders. This enforcement move likely deters organisations from handling data negligently or maliciously, promotes compliance with data protection laws, and reduces breaches.
Nigeria’s decline in breaches also mirrors a global drop in compromised accounts, with worldwide leaked accounts plunging 93% year-on-year from 973.7 million in Q1 2024 to 68.3 million in Q1 2025. This suggests that improvements in cybersecurity technologies and practices are broadly impacting Nigeria as part of the global digital ecosystem.
ALSO READ:
- Nigeria, Tunisia Strengthen Bilateral Relations in Culture and Tourism
- 68th UN Tourism CAF Meeting: Nigeria’s Bid to Become a Global Tourism Destination Gains Traction
- Nigeria and Trinidad & Tobago Forge Deal to Boost Trade, Tourism, and Connectivity
Plus, awareness campaigns and growing collaborations with cybersecurity experts, including using AI-powered tools for proactive cybersecurity, have helped educate individuals and organisations on data protection rights and best practices. These initiatives have contributed to reducing vulnerabilities and breaches.
Nigeria’s reduction in account breaches has significant positive implications for Nigeria’s and Africa’s digital tourism sectors. A substantial decrease in account breaches will breed greater trust among Nigerian consumers in online platforms for travel bookings, payments, and sharing personal information. This increased confidence will be crucial for the growth of domestic digital tourism, and tourism-related businesses are poised for growth.
With reduced fear of fraud and data theft, there’s likely to be an increase in online transactions related to tourism, such as booking flights, accommodations, and tours. This will lead to greater efficiency and convenience for travellers and businesses, and digital payment adoption for tourism services could also be boosted.
More so, a perception of improved digital security can make Nigeria a more attractive destination for international tourists who rely heavily on online resources for planning and booking their travels. These digitally-savvy tourists are more likely to choose destinations where they feel their online activities and data are secure.
A demonstrated commitment to improving cybersecurity can enhance Nigeria’s reputation as a safe and reliable destination for digital interactions, including tourism. This positive image can attract more foreign investment in Nigeria’s technology and tourism sectors. The improved security landscape can also encourage the development and growth of local e-tourism platforms and startups, offering innovative services and reaching a wider audience.
FAQs
1. What is the significance of Nigeria’s 85% drop in account breaches in Q1 2025?
Nigeria recorded an 85% decline in account breaches in the first quarter of 2025 compared to the last quarter of 2024, signalling improved digital security measures and a potential turning point for safer online environments in Africa’s largest internet market.
2. How many Nigerian accounts were breached in Q1 2025, and how does this compare globally?
About 119,000 Nigerian user accounts were compromised in Q1 2025, placing Nigeria 34th globally in data breaches. Globally, total compromised accounts dropped 93% from 973.7 million in Q4 2024 to 68.3 million in Q1 2025.
3. What risks do Nigerian users face from past data breaches?
Over 23.2 million Nigerian accounts have been compromised since 2004, including 7.3 million unique emails and 13 million leaked passwords. Approximately 56% of affected users are at risk of identity theft, extortion, and unauthorised account access.
4. How does improved cybersecurity impact Africa’s digital tourism sector?
The significant reduction in account breaches enhances trust in digital platforms, encouraging more secure online transactions and interactions. This can boost digital tourism by making it safer for tourists and businesses to engage digitally across Africa.
5. What measures should Nigerians take to protect themselves from cyber threats despite declining breaches?
Users are advised to maintain strong security practices such as regularly updating passwords, enabling two-factor authentication, and staying informed about evolving cyber threats to prevent identity theft and account takeovers.
