Azeez Olanipekun Hassan,Sarah Kuzankah Ewuga,Adekunle Abiola Abdul,Temitayo Oluwaseun Abrahams,Monisola Oladeinde,Samuel Onimisi Dawodu

DOI: https://doi.org/10.51594/csitrj.v5i1.701

2024-01-09

Computer Science & IT Research Journal

Abstract:The paper review cybersecurity practices in banking, with a specific focus on Nigerian banks. Cybersecurity has become a paramount concern in the banking industry worldwide, given the escalating frequency and sophistication of cyber threats. This study provides an overview of the global landscape of cybersecurity in banking, with a specific focus on practices observed in Nigeria. The global banking sector is witnessing a surge in digital transformation, marked by the adoption of advanced technologies and online financial services. However, this digitization brings with it unprecedented cybersecurity challenges, ranging from data breaches and ransomware attacks to sophisticated financial fraud. Financial institutions globally are compelled to fortify their cybersecurity frameworks to protect sensitive customer information, ensure the integrity of financial transactions, and maintain trust in the digital financial ecosystem. Nigeria, as a key player in the African banking landscape, faces unique cybersecurity challenges and has developed distinct strategies to safeguard its financial institutions. This study explores the cybersecurity practices employed by Nigerian banks, considering regulatory frameworks, incident response mechanisms, and collaborative efforts with international cybersecurity entities. The analysis encompasses case studies illustrating real-world cyber threats and incidents in both global and Nigerian banking contexts. It investigates the effectiveness of cybersecurity measures implemented by Nigerian banks, shedding light on the nation's response to evolving cyber risks. Furthermore, the study delves into collaborative initiatives between Nigerian banks, regulatory bodies, and international cybersecurity organizations to enhance information sharing, threat intelligence, and collective defense mechanisms. It also explores the role of public awareness campaigns in fostering a cyber-resilient banking environment. The insights provided aim to contribute to the collective understanding of cybersecurity challenges in the global banking sector while offering a nuanced perspective on Nigerian practices. As digital financial ecosystems continue to evolve, the findings underscore the importance of ongoing adaptation, collaboration, and innovation in safeguarding the integrity and trustworthiness of banking systems, both on a global scale and within the Nigerian context. Keywords: Cybersecurity, Banking, Global Perspective, Nigerian, Cybersecurity, Artificial Intelligence.

Michael Ikenna

DOI: https://doi.org/10.47604/ijmrm.2642

2024-06-04

Abstract:Purpose: The aim of the study was to examine operational risks faced by financial institutions in the digital age: a case of Nigeria. Methodology: This study adopted a desk methodology. A desk study research design is commonly known as secondary data collection. This is basically collecting data from existing resources preferably because of its low cost advantage as compared to a field research. Our current study looked into already published studies and reports as the data was easily accessed through online journals and libraries. Findings: The study found that financial institutions in Nigeria are confronted with a myriad of operational risks in the digital age, stemming from the rapid adoption of technology and the evolving cyber threat landscape. The shift towards digital banking and fintech innovations has introduced new vulnerabilities, including cyberattacks, data breaches, and fraudulent activities, posing significant challenges to the security and integrity of financial systems in Nigeria. Operational risks associated with technological disruptions, such as system failures, IT outages, and disruptions to digital payment platforms, can undermine the reliability and efficiency of financial services, leading to customer dissatisfaction and financial losses. The proliferation of mobile banking and digital payment channels has heightened concerns about financial inclusion, data privacy, and regulatory compliance, necessitating robust risk management frameworks and regulatory oversight to safeguard the stability and resilience of Nigeria's financial sector. Unique Contribution to Theory, Practice and Policy: Technology Acceptance Model (TAM), Agency Theory & Resource Dependence Theory may be used to anchor future studies on operational risks faced by financial institutions in the digital age: a case of Nigeria. Financial institutions should prioritize the implementation of robust cybersecurity measures, including regular security audits, penetration testing, and employee training programs. By enhancing cybersecurity awareness and preparedness, institutions can mitigate the risk of cyberattacks and data breaches. Regulatory authorities play a crucial role in shaping the regulatory landscape to address operational risks in the Digital Age. Policymakers should collaborate with industry stakeholders to develop robust regulatory frameworks that promote innovation while safeguarding financial stability and consumer protection.

Abimbola Oluwatoyin Adegbite,Deborah Idowu Akinwolemiwa,Prisca Ugomma Uwaoma,Simon Kaggwa,Odunayo Josephine Akindote,Samuel Onimisi Dawodu

DOI: https://doi.org/10.51594/csitrj.v4i3.658

2023-12-24

Computer Science & IT Research Journal

Abstract:This review analyses cybersecurity methods in the USA, focusing on protecting national infrastructure, with lessons and implications for global cybersecurity practices. In an era dominated by digital interconnectedness, the protection of national infrastructure from cyber threats is of paramount importance. This paper provides a comprehensive review of cybersecurity strategies employed by the United States to safeguard critical national infrastructure. As the nation's reliance on technology continues to grow, so does the complexity and sophistication of cyber threats. The paper examines key frameworks, policies, and initiatives implemented by the USA to fortify its critical infrastructure against cyber-attacks. It outlines the current threat landscape, the evolving nature of cyber threats and the potential consequences of successful attacks on critical sectors such as energy, transportation, and finance. It also analyzes the strategic approaches adopted by the USA, including the National Infrastructure Protection Plan (NIPP), the National Institute of Standards and Technology (NIST) Cybersecurity Framework, and collaborative efforts between the public and private sectors. The paper explores the role of government agencies, regulatory bodies, and private enterprises in implementing and enforcing cybersecurity measures. It assesses the effectiveness of information sharing initiatives, public-private partnerships, and international collaborations in enhancing the resilience of national infrastructure against cyber threats. Furthermore, the review addresses emerging technologies such as Artificial Intelligence (AI) and the Internet of Things (IoT) in the context of cybersecurity. It evaluates how these technologies are leveraged to detect, prevent, and respond to cyber threats in real-time, considering both their benefits and potential risks. Ethical considerations, privacy concerns, and challenges associated with the implementation of robust cybersecurity strategies are also discussed. The paper concludes with insights into the evolving nature of cyber threats and recommendations for continuous improvement in national cybersecurity strategies, emphasizing the need for agility, adaptability, and collaboration to stay ahead of an ever-changing threat landscape. This study contributes to the broader understanding of cybersecurity practices, offering insights that are not only relevant to the USA but also applicable to other nations facing similar challenges in safeguarding their critical infrastructure in an increasingly interconnected and digital world. Keywords: Cybersecurity, Strategies, Protecting, National Infrastructure, USA, NIST, Artificial Intelligence.

Temitayo Oluwaseun Abrahams,Sarah Kuzankah Ewuga,Samuel Onimisi Dawodu,Abimbola Oluwatoyin Adegbite,Azeez Olanipekun Hassan

DOI: https://doi.org/10.51594/csitrj.v5i1.699

2024-01-09

Computer Science & IT Research Journal

Abstract:In an era where digital threats are increasingly pervasive, understanding the evolution and efficacy of cybersecurity strategies in modern organizations is paramount. This study provides a comprehensive analysis of the dynamic landscape of cybersecurity, exploring its progression from traditional methods to innovative, technology-driven approaches. The digital age has ushered in complex cyber threats, necessitating robust cybersecurity measures. This study examines cybersecurity strategies' historical development, current trends, and future directions across different organizational contexts and industries. The primary aim is to assess the evolution and effectiveness of cybersecurity measures, identify existing gaps, and understand the interplay between human behavior, technology, and policy in cybersecurity. The paper encompasses a comprehensive methodological framework for cybersecurity analysis, exploring the effectiveness of traditional versus modern approaches, the role of AI and ML, and the impact of international policies. It also presents case studies to illustrate successes and failures in cybersecurity implementation. Key findings reveal a significant shift towards advanced technologies like AI and ML in cybersecurity, the critical role of human factors in shaping cybersecurity outcomes, and the influence of international policies in standardizing cybersecurity practices. The study concludes that effective cybersecurity strategies require a balanced approach, combining technological advancements with understanding human factors and adherence to international standards. Recommendations include continuous education and training, adopting holistic cybersecurity strategies, and aligning with international policies. Keywords: Cybersecurity, Artificial Intelligence, Machine Learning, International Policies, Human Factors, Cyber Threats.

Rami Shehab,Abrar s.alismail,Dr. Mohammed Amin Almaiah,Dr. Tayseer Alkhdour,Dr. Belal Mahmoud AlWadi,Dr. Mahmaod Alrawad

DOI: https://doi.org/10.58346/jisis.2024.i3.010

2024-08-30

Abstract:Technology is important in all aspects of our lives, particularly in the banking sector. Advanced technologies resulted in a fundamental shift in the way banks operate. Malicious use of technology leads to security breaches, customer distrust, financial instability, and other forms of cybercrime. This paper focuses on the most important threats and challenges to be considered while interacting with banks and financial institutions. Significant number of literatures will be reviewed to identify the most common threats and attacks on banks and financial institutions sector, as well as appropriate mitigation techniques and countermeasures. This paper focuses on bank and financial services institution infrastructure vulnerabilities that are escalating attacks on the sector and affecting the banking system, individuals, and organizations. The security study in these 35 projects demonstrates how cyber intrusions continue to attack the financial sector due to the weakness of security defense and data containment. It turns out that malware attacks are the most common threats to banks and financial institutions. Sharing and exchanging information between banks and financial institutions, as well as best practices taken by bank cards issuers and users are the most effective mitigation techniques. Some previous studies proposed a successful model for mitigating the impact of threats on banks and financial institutions, as well as reducing risks that cannot be mitigated using current mitigation techniques. According to banks and financial services statistics and surveys, existing controls and laws do not provide appropriate security meet the banks and financial services institutions systems' demands and requirements.

Abdulganiyu, Oluwadamilare Harazeem

DOI: https://doi.org/10.1007/s10207-023-00682-2

2023-03-28

International Journal of Information Security

Abstract:With the recent increase in internet usage, the number of important, sensitive, confidential individual and corporate data passing through internet has increasingly grown. With gaps in the security systems, attackers have attempted to intrude the network, thereby gaining access to essential and confidential information, which may cause harm to the operation of the systems, and also affect the confidentiality of the data. To counter these possible attacks, intrusion detection systems (IDSs), which is an essential branch of cybersecurity, were employed to monitor and analyze network traffic thereby detects and reports malicious activities. A large number of review papers have covered different approaches for intrusion detection in networks, most of which follow a non-systematic approach, merely made a comparison of the existing techniques without reflecting an in-depth analytical synthesis of the methodologies and performances of the approaches to give a complete understanding of the state of IDS. Nonetheless, many of these reviews investigated more about the anomaly-based IDS with more emphasis on deep-learning models, while signature, hybrid-based (signature + anomaly-based) have received minimal focus. Hence, by adhering to the principles of Preferred Reporting Items for Systematic Reviews and Meta-Analyses (PRISMA), this work reviewed existing contributions on anomaly-, signature-, and hybrid-based approaches to provide a comprehensive overview of network IDS's state of the art. The articles were retrieved from seven databases (ScienceDirect, SpringerNature, IEEE, MDPI, Hindawi, PeerJ, and Taylor & Francis) which cut across various reputable journals and conference Proceedings. Among the 776 pieces of the literature identified, 71 were selected for analysis and synthesis to answer the research questions. Based on the research findings, we identified unexplored study areas and unresolved research challenges. In order to create a better IDS model, we conclude by presenting promising, high-impact future research areas.

computer science, information systems, theory & methods, software engineering

Olajide Soji Osundare,Adebimpe Bolatito Ige

DOI: https://doi.org/10.51594/farj.v6i8.1384

2024-08-11

Finance & Accounting Research Journal

Abstract:As financial technology (fintech) continues to evolve, ensuring robust security within inter-bank infrastructure has become increasingly critical. This review paper explores advanced network protocols for safeguarding financial transactions and data against modern cyber threats. The study examines key protocols such as Multiprotocol Label Switching (MPLS), Segment Routing, and Internet Protocol Security (IPSEC), highlighting their roles in enhancing the performance and security of financial networks. It addresses current security challenges, including sophisticated cyber-attacks, insider threats, and vulnerabilities associated with cloud services and third-party vendors. Furthermore, the paper outlines the steps for integrating these advanced protocols into existing systems, provides best practices for optimal performance and security, and discusses emerging trends and future directions in financial network security. Recommendations for fintech companies and financial institutions are provided to help them navigate the evolving security landscape effectively. The paper concludes with potential areas for future research, emphasizing the need for ongoing innovation in network security to address emerging threats. Keywords: Financial Security, Advanced Network Protocols, MPLS, Segment Routing, IPSEC.

Omolara Patricia Olaiya,Temitayo Oluwadamilola Adesoga,Adefisayo Ojo,Oluwabusola Dorcas Olagunju,Olajumoke Oluwagbemisola Ajayi,Yusuf Olalekan Adebayo

DOI: https://doi.org/10.30574/gscarr.2024.20.1.0241

2024-07-30

GSC Advanced Research and Reviews

Abstract:The financial technology (fintech) sector has witnessed remarkable expansion in recent years, fundamentally reshaping the landscape of financial services delivery and consumption. This growth is driven by new technologies such as mobile banking, digital wallets, blockchain and artificial intelligence Keenan the risk for fintech has increased. As pioneers in the use of technology to enhance financial transactions, Fintech has become an attractive target for cybercriminals looking to exploit weaknesses in digital infrastructure. The evolving nature and sophistication of cyber threats, including phishing attacks, ransomware, data breaches, and insider threats, pose significant risks to the integrity and security of financial data and assets. This paper aims to provide a comprehensive review of cybersecurity strategies implemented within the fintech industry to safeguard against these threats. It examines the current landscape of cyber risks facing fintech firms, highlighting the multifaceted challenges posed by malicious actors and technological vulnerabilities. Moreover, the paper evaluates the effectiveness of various cybersecurity measures adopted by fintech companies, such as encryption protocols, multi-factor authentication, AI-driven threat detection, and blockchain technology. Furthermore, the review discusses emerging trends and technologies poised to bolster cybersecurity in the fintech sector. These include advancements in quantum-resistant encryption, zero-trust architecture, regulatory compliance frameworks (e.g., GDPR, PCI DSS), and proactive incident response strategies. By exploring these innovative approaches, the paper seeks to illuminate proactive measures that can mitigate cyber risks and enhance resilience in fintech operations.

Ankur Shukla,Basel Katt,Livinus Obiora Nweke,Prosper Kandabongee Yeng,Goitom Kahsay Weldehawaryat

DOI: https://doi.org/10.1016/j.cosrev.2022.100496

2022-07-29

Abstract:System security assurance provides the confidence that security features, practices, procedures, and architecture of software systems mediate and enforce the security policy and are resilient against security failure and attacks. Alongside the significant benefits of security assurance, the evolution of new information and communication technology (ICT) introduces new challenges regarding information protection. Security assurance methods based on the traditional tools, techniques, and procedures may fail to account new challenges due to poor requirement specifications, static nature, and poor development processes. The common criteria (CC) commonly used for security evaluation and certification process also comes with many limitations and challenges. In this paper, extensive efforts have been made to study the state-of-the-art, limitations and future research directions for security assurance of the ICT and cyber-physical systems (CPS) in a wide range of domains. We conducted a systematic review of requirements, processes, and activities involved in system security assurance including security requirements, security metrics, system and environments and assurance methods. We highlighted the challenges and gaps that have been identified by the existing literature related to system security assurance and corresponding solutions. Finally, we discussed the limitations of the present methods and future research directions.

Cryptography and Security,Software Engineering

Samuel Cris Ayo,Bonaventure Ngala,Olasunkanmi Amzat,Robin Lal Khoshi,Samarappulige Isuru Madusanka

DOI: https://doi.org/10.48550/arXiv.1812.04659

2018-12-12

Abstract:Owing to recorded incidents of Information technology inclined organisations failing to respond effectively to threat incidents, this project outlines the benefits of conducting a comprehensive risk assessment which would aid proficiency in responding to potential threats. The ultimate goal is primarily to identify, quantify and control the key threats that are detrimental to achieving business objectives. This project carries out a detailed risk assessment for a case study organisation. It includes a comprehensive literature review analysing several professional views on pressing issues in Information security. In the risk register, five prominent assets were identified in respect to their owners. The work is followed by a qualitative analysis methodology to determine the magnitude of the potential threats and vulnerabilities. Collating these parameters enabled the valuation of individual risk per asset, per threat and vulnerability. Evaluating a risk appetite aided in prioritising and determining acceptable risks. From the analysis, it was deduced that human being posed the greatest Information security risk through intentional/ unintentional human error. In conclusion, effective control techniques based on defence in-depth were devised to mitigate the impact of the identified risks from risk register.

Computers and Society,Cryptography and Security

Ibidapo,O. Akinyemi,Zaccheous O. Omogbadegun,Olufemi M. Oyelami

DOI: https://doi.org/10.48550/arXiv.1111.7222

2011-11-30

Cryptography and Security

Abstract:Security measures at banks can play a critical, contributory role in preventing attacks on customers. These measures are of paramount importance when considering vulnerabilities and causation in civil litigation. Banks must meet certain standards in order to ensure a safe and secure banking environment for their customers. This paper focuses on vulnerabilities and the increasing wave of criminal activities occurring at Automated Teller Machines (ATMs) where quick cash is the prime target for criminals rather than at banks themselves. A biometric measure as a means of enhancing the security has emerged from the discourse. Keywords-Security, ATM, Biometric, Crime.

Oluwatoyin Esther Akinbowale,Heinz Eckart Klingelhöfer,Mulatu Fekadu Zerihun

DOI: https://doi.org/10.1108/jfc-02-2023-0025

2023-06-23

Journal of Financial Crime

Abstract:Purpose The purpose of this study is to examine the level of effectiveness of the anti-fraud technologies employed by the South African banking industry for cyberfraud mitigation. Design/methodology/approach This research employed a qualitative research design involving a purposive sampling method. Primary data was collected from the key organisational staff across the 17 licensed commercial banks in South Africa via the use of structured questionnaires. In particular, these were experts involved in combating fraud and taking managerial decisions regarding the use of anti-fraud technologies for cyberfraud mitigation. Non-parametric statistical analyses were carried out from the responses obtained. Findings The results obtained indicated that the combination of internal and external anti-fraud technologies such as filtering software, firewalls, encryption, continuous auditing, discovery sampling, virus protection, financial ratios, digital analysis and data mining may have a positive effect on cyberfraud mitigation. These technologies are employed mostly to ensure effective internal control systems capable of minimising cyberfraud. In addition, the anti-fraud technologies employed in the South African banking industry may also be effective in the mitigation of cyberfraud, although significant cases of cyberattacks were reported by the respondents. Practical implications The study recommends investment in more digital and emerging technologies and the development of human capacities to effectively deploy them in the combat against cybercrime. Originality/value The novelty of this study lies in the identification of the type of anti-fraud technologies/software employed by the South African banking industry and their level of effectiveness or success rate.

Hillary Godana,Samson Wokabi Mwangi,Panuel Mwaeke

DOI: https://doi.org/10.14738/assrj.912.13539

2022-12-11

Advances in Social Sciences Research Journal

Abstract:This paper uses data collected for an MA Thesis on Security Managers’ perspectives on challenges facing Commercial Banks in Preventing Frauds in Nairobi County, Kenya. The study was motivated by continued rise of frauds in commercial banks in the county, despite the extensive mitigation measures put in place to deter frauds. The study established the nature of frauds prevalent in Kenya commercial banks in Nairobi County, assessed the determinants of fraud in Kenya commercial banks, determined Bank Security Managers Capacity in fraud prevention, and finally examined Security Managers perceptions on the relationship between the existing preventive measures and emerging Bank fraud trends in Nairobi County, Kenya. The study was grounded by the Fraud Triangle concept and adopted a case study qualitative design. The main method of data collection was the interview. The study comprises of 50 respondents: 39 main respondents and 11 Key Informants. The census sampling Method was used to select respondents for the study. Data was transcribed and the transcriptions coded using NVIVO software. The study established three major types of frauds; Management frauds, Non-Management Frauds and Third Party Frauds, all said to be on an increase trend. According to this study fraud rates are higher at Nairobi County (90%), than at other counties (70%). Mobile and Internet banking frauds were found to be the new threats challenging commercial banks because by their very nature because of technological sophistication, were committed from geographical location including outside the country. The study established two major determinants of frauds; Fraudsters Perspectives and institutional related factors. Major fraudster’s perspectives include; condition under which people can rationalize their prospective crimes, opportunities to commit crimes, perceived suitability of targets for fraud, technical ability of the fraudster, the possibility and likelihood of the fraud being discovered and the nature of consequences. Institutional factors that influence fraud prevalence include; weak accounting and control systems, and ineffective internal audits. According to the study, technological sophistication has outsmarted many security managers in the banking sector, because of their technological skills gaps in Fraud forensics. Finally, the study established the relationship between existing preventive measures and emerging Bank fraud trends in Nairobi County. Major policy recommendations suggested to cut frauds at the nib include; benchmarking for best internationally recognized standards such as carrying out expected and unexpected audits, enforced internal controls, regular training of security managers, and review of commercial banks organogram that will place security managers at a position to police frauds perpetrated by management.

Rose Mwai,Samuel Wabala,Ken Ogada

DOI: https://doi.org/10.47604/ijts.2135

2023-10-07

International Journal of Technology and Systems

Abstract:Purpose: The main objective of the research was to investigate the role of ICT risk management on reduction of insider frauds in the Kenyan banks in Nairobi County. The research explored ICT risks management practices incorporated in the banking industry to mitigate and control insider fraud. Methodology: Explorative research design and inferential statistics were used. The unit of analysis was the ICT risk management professionals in all the commercial banks in Nairobi County. 42 commercial banks formed the population of the study. The unit of observation were the ICT security, audit and risk professionals mandated with implementing ICT risk management. The targeted number was at least one respondent from each bank from the three departments identified: internal audit, Information technology, and security managers. In total, the study targeted 42 respondents and a total 29 responses were received which formed 69% of the targeted population. Responses from the distributed questionnaires were analyzed using statical packages for social science (SPSS). The open-ended questions were listed, analysed and reported by descriptive narrative with such statistics as mean and standard deviation. The ANOVA test was used to test the results. Findings: The findings revealed that there is a positive but insignificant correlation between ICT risk assessment, ICT awareness, Information security implementation and a significant positive correlation between information security audits and Insider fraud prevention. This study recommends that ICT risk assessment; ICT risk awareness; information security audits; and information security policy are important for preventing insider fraud in commercial banks, but there is need to implement them in conjunction with other stringent measure to increase efficiency Unique Contribution to Theory, Practice and Policy: The findings give a theoretical basis for validating the effectiveness of ICT risk management practices in Banks in Nairobi County, this can be adopted by other counties in Kenya. For policy implementation, the study will be important to the central bank of Kenya and any other institution that regulates the banking sector in Kenya in reviewing the current ICT Risk management guidelines. The study shows the adoption of the selected ICT risk management practices by different banks and gives a measure of their effectiveness that ICT Security professionals can use. The study gives the banking sector ICT security professionals a perspective on how ICT risk management can help them improve their ability to curb insider fraud. The study adds to the pool of knowledge for to scholars and academicians.

Oluwaseun Oladeji Olaniyi,Christopher Uzoma Asonze,Samson Abidemi Ajayi,Samuel Oladiipo Olabanji,Chinasa Susan Adigwe

DOI: https://doi.org/10.9734/ajeba/2023/v23i231176

2023-12-08

Abstract:Organizations across various sectors are increasingly vulnerable to cybersecurity breaches in an era characterized by unprecedented technological advancements and a rapidly evolving threat landscape. Among the myriad methods employed by malicious actors, social engineering stands out as a particularly insidious and effective means of infiltrating secure systems and obtaining sensitive information. To effectively address these issues, organizations must establish and sustain a principled security process; this process goes beyond installing the latest security technologies. It encompasses the concept of "organizational security culture. This paper investigates the impact of organizational security culture and transformational leadership on bank employees' social engineering awareness, focusing on security education and behavioral change. Social engineering is the unauthorized infiltration of the end user's computer system and network through malware techniques such as tailgating, phishing, vishing, pretexting, and baiting to gain access to companies and individual confidential data; thus, this study aims to analyze the effect of organizational security culture and transformational leadership on social engineering awareness among bank employees while assessing security education's role in driving behavioral change. This research used the Likert scale model to collect primary data through survey questionnaires from 450 bank employees. The data collected was analyzed using linear regression analysis to test the study’s hypothesis. This study recommends that banking institutions should adopt a good organizational security culture and expose their staff to effective security education, as this will cause a change in employees' security behavior and more research should be conducted regarding security culture, security education, and awareness programs within banking institutions due to bank operations' ever-dynamic nature and ensuring preparedness for prevailing cyber threats.

Bukhari Badamasi,Samuel C. Avemaria Utulu

DOI: https://doi.org/10.48550/arXiv.2108.09754

2021-08-22

Abstract:Universities in developing countries, including those in Nigeria, experience cybercrime risks due to poor management of their cyber spaces and resources. The outcome of these cybercrimes are threats and breaches of universities' cyber security. The threats and breaches have resulted in substantial financial, social, and intellectual property losses. In the recent past, Nigerian universities have started to respond to these cyber-attacks. Many of them now invest in anti-cybercrime tools and programs to mitigate cyber security threats and breaches. Despite this, the number of times Nigerian universities suffer from cyber-attacks and the losses that result from them keeps increasing. Our observation, however, indicates that most Nigerian universities run their cyber security without using scientifically derived frameworks that spell out how to manage threats and breaches that emanate from within and outside them. We consider this a problem to ongoing efforts made by Nigerian universities to mitigate cyber security threats and breaches. The study reported in this paper was therefore, carried out to explicate how Nigerian universities can develop actionable frameworks that can help them to mitigate cyber security threats and breaches. The study is based on literature review and propose how an actionable framework that Nigerian Universities can adopt to setoff cybersecurity programs can be developed. The process comprises of problem identification, description of objectives, designing and developing the artefact, testing, and evaluating the artefact, and communicating the result. We conclude that the framework provides a lucrative starting point for Nigerian universities to setoff efficient and effective cyber security program.

Computers and Society

S.O. Popoola,Yacob Haliso

DOI: https://doi.org/10.1017/s0305862x00020963

2010-01-01

African Research and Documentation

Abstract:Abstract This study investigates management perceptions of internet-based banking services with special references to commercial banks in Nigeria. There was a significant difference between male and female management perceptions of internet-based banking services; management had significant positive rather than negative perception of Internet-based banking services; there was a significant difference between strategic and tactical management perceptions of Internet-based banking services. Gender age, work experience, management cadre and computer experience/training strongly influenced the management perceptions of Internet-based banking services in the Nigerian commercial banking system. Suggestions are proffered on how to further enhance management's positive perceptions of the Internet-based banking services in Nigerian commercial banks.

Williams Haruna,Toyin Ajiboro Aremu,Yetunde Ajao Modupe

DOI: https://doi.org/10.48550/arXiv.2212.12307

2022-12-15

Cryptography and Security

Abstract:Cyber security threats to the payment and banking system have become a worldwide menace. The phenomenon has forced financial institutions to take risks as part of their business model. Hence, deliberate investment in sophisticated technologies and security measures has become imperative to safeguard against heavy financial losses and information breaches that may occur due to cyber-attacks. The proliferation of cyber crimes is a huge concern for various stakeholders in the banking sector. Usually, cyber-attacks are carried out via software systems running on a computing system in cyberspace. As such, to prevent risks of cyber-attacks on software systems, entities operating within cyberspace must be identified and the threats to the application security isolated after analyzing the vulnerabilities and developing defense mechanisms. This paper will examine various approaches that identify assets in cyberspace, classify the cyber threats, provide security defenses and map security measures to control types and functionalities. Thus, adopting the right application to the security threats and defenses will aid IT professionals and users alike in making decisions for developing a strong defense-in-depth mechanism.

Oluwagbemi Oluwatolani,Abah Joshua,Achimugu Philip

DOI: https://doi.org/10.48550/arXiv.1108.1153

2011-08-05

Abstract:Today, information technology (IT) has become a key element in economic development and a backbone of knowledge-based economies in terms of operations, quality delivery of services and productivity of services. Therefore, taking advantage of information technologies (IT) is an increasing challenge for developing countries. There is now growing evidence that Knowledge-driven innovation is a decisive factor in the competitiveness of nations, industries, organizations and firms. Organizations like the banking sector have benefited substantially from e-banking, which is one among the IT applications for strengthening the competitiveness. This paper presents the current trend in the application of IT in the banking industries in Nigeria and gives an insight into how quality banking has been enhanced via IT. The paper further reveals that the deployment of IT facilities in the Nigerian Banking industry has brought about fundamental changes in the content and quality of banking business in the country. This analysis and clarification of how Nigerian Banks have used IT to reengineer their operations is detailed through literature review and observation. Three categories of variables that relate to the use and implementation of information technology devices were considered in this paper. These include the nature and degree of adoption of innovative technologies; degree of utilization of the identified technologies; and the impact of the adoption of IT devices on the bank operations.

Other Computer Science

P. Rajesh Kanna,P. Santhi

DOI: https://doi.org/10.1007/s12652-024-04794-y

IF: 3.662

2024-05-09

Journal of Ambient Intelligence and Humanized Computing

Abstract:The field of computer networking is experiencing rapid growth, accompanied by the swift advancement of internet tools. As a result, people are becoming more aware of the importance of network security. One of the primary concerns in ensuring security is the authority over domains, and network owners are striving to establish a common language to exchange security information and respond quickly to emerging threats. Given the increasing prevalence of various types of attacks, network security has become a significant challenge in the realm of computing. To address this, a multi-level distributed approach incorporating vulnerability identification, dimensioning, and countermeasures based on attack graphs has been developed. Implementing reconfigurable virtual systems as countermeasures significantly improves attack detection and mitigates the impact of attacks. Password-based authentication, for instance, can be susceptible to password cracking techniques, social engineering attacks, or data breaches that expose user credentials. Similarly, ensuring privacy during data transmission through encryption helps protect data from unauthorized access, but it does not guarantee the prevention of other types of attacks such as malware infiltration or insider threats. This research explores various techniques to achieve effective attack detection. Multiple research methods have been utilized and evaluated to identify the most suitable approach for network security and attack detection in the context of cloud computing. The analysis and implementation of diverse research studies demonstrate that the based signature intrusion detection method outperforms others in terms of precision, recall, F-measure, accuracy, reliability, and time complexity.

computer science, information systems,telecommunications, artificial intelligence