Cyber Incident Victim: Nigerian Defence Headquarters

On January 23, 2015, the Nigerian Defence Headquarters (DHQ) experienced a cybersecurity breach targeting its official information blog site, defenceinfo.mil.ng. The attack occurred in the early hours of the day, resulting in the defacement of the website’s front-end interface. Hackers altered the visible content presented to users accessing the platform, though they failed to compromise the underlying database storing the site’s information. The Defence Headquarters confirmed the incident through an official statement released on the same day by Major-General Chris Olukolade, the Director of Defence Information (DDI). Initial assessments indicated the blog’s operational disruption was temporary, with restoration efforts commencing promptly. The attack specifically targeted a platform serving as a primary channel for disseminating military updates and counter-terrorism campaign information to the public.

Preliminary investigations traced the origin of the breach to vulnerabilities at the site’s hosting provider level, rather than inherent weaknesses in DHQ’s internal infrastructure. The hacker, identifying as "ImaSadiq," claimed responsibility for the defacement but was subsequently neutralized by DHQ’s response team, enabling full restoration of the blog’s functionality by January 24, 2015. Major-General Olukolade emphasized that the attack’s timing and target selection directly correlated with the platform’s strategic role in shaping public communication regarding national security operations. No data loss or secondary compromises were reported, as the intrusion remained confined to superficial front-end alterations. The incident underscored persistent threats to digital assets critical to Nigeria’s security communications infrastructure during active counter-terrorism efforts.