Nigeria's federal government dismisses payroll system breach reports

·
September 17, 2024
·
2 min read
Dr. Mrs. Oluwatoyin Madein

The news:

  • The Office of the Accountant General of the Federation (OAGF) has firmly dismissed concerns about a potential data breach in Nigeria’s Integrated Personnel and Payroll Information System (IPPIS). 
  • The statement, signed by Bawa Mokwa, Director of Press and Public Relations at the OAGF, reassured Nigerian civil servants that their data remains safe and the system's security has not been compromised.
  • The concerns about data vulnerability arose from recent media reports alleging that the payroll validation section of the IPPIS website had been hijacked, leading to the suspension of some staff of the OAGF. 

These reports suggested that the expired security certificate of the website may have left employees' information at risk of being accessed by hackers, leaving workers vulnerable to issues like phishing and unauthorised salary deductions.

However, the OAGF categorically denied these claims, clarifying that no sensitive information is stored on the website and that IPPIS operations are securely managed through a separate platform.

In its official response, the OAGF, which manages the IPPIS alongside other financial management initiatives, explained that the IPPIS website is solely used for sharing information, not for handling payroll transactions or storing personal data. 

“The website is the medium to share information. Neither payroll nor payment is made through the website; therefore, no data is contained in the website,” part of the statement read. 

Advertisement

The OAGF assured that Nigeria’s IPPIS is backed by a comprehensive ICT security policy that aligns with global cybersecurity best practices and ensures the protection of digital assets, guarding against unauthorised access and data breaches. 

Per the OAGF, a secure platform and database, procured from HELIX-FONS, were used to support the payroll validation process, which has since been concluded and the portal was permanently shut down.

This comes in the wake of a broader concern about government IT security and efficiency, especially regarding how it protects personnel and citizens’ information across the country. 

For example, in June 2024, a digital rights company accused AnyVerify of selling sensitive Nigerian data, including the National Identity Number (NIN), online for ₦100. A few days later, the National Identity Management Commission (NIMC) flagged five websites for allegedly obtaining Nigerians' data without permission. 

Given IPPIS’s crucial role in ensuring prompt payment of salaries, the allegations of data breaches or malfunctions naturally raised alarm among civil servants.

Let the best of tech news come to you

Join 30,000 subscribers who receive Techpoint Digest, a fun week-daily 5-minute roundup of happenings in African and global tech, directly in your inbox, hours before everyone else.
Digest Subscription

Give it a try, you can unsubscribe anytime. Privacy Policy.

However, the federal government has advised workers to follow established official channels to resolve any operational issues or discrepancies in salary payments. 

Subscribe To Techpoint Digest
Join thousands of subscribers to receive our fun week-daily 5-minute roundup of happenings in African and global tech, directly in your inbox, hours before everyone else.
This is A daily 5-minute roundup of happenings in African and global tech, sent directly to your email inbox, between 5 a.m. and 7 a.m (WAT) every week day! 
Digest Subscription

Give it a try, you can unsubscribe anytime. Privacy Policy.

Other Stories

43b, Emina Cres, Allen, Ikeja.

 Techpremier Media Limited. All rights reserved
magnifier