FG dismisses report of cyber attack on Nigeria education management information system

The Federal Ministry of Education has denied reports that the Nigeria Education Management Information System was hacked, describing the report as inaccurate and misleading.

In a statement issued on Tuesday and signed by Folasade Boriowo, the director of press and public relations, the ministry reacting to a report titled “Suspected Cyber attack Hits FG’s Education Data Platform”, insisted that the platform remains secure and that no cyber attack occurred.

“The Ministry wishes to categorically state that the report is inaccurate and misleading. At no time was the NEMIS platform hacked, breached, or subjected to any cyber attack. The integrity, confidentiality, and availability of data on the platform remain fully intact,” the statement read.

According to the statement, the temporary warning message seen by some users was caused by an SSL (Secure Sockets Layer) certificate configuration issue at the hosting level, rather than any security breach.

Read also: Nigerians turn to AI for shopping while demanding stronger fraud protection – Report

The issue affected the platform’s secure access certification but did not result in unauthorised access, loss of data, alteration of records, or exposure of sensitive information, the ministry explained.

It added that its technical team worked with the hosting service provider to address the problem immediately after it was detected.

“The incident was purely technical in nature and did not involve any unauthorised access to the system, data loss, data alteration, or exposure of sensitive information,” the ministry said.

“Upon identification of the issue, the Ministry’s technical team, working in collaboration with the hosting service provider, promptly resolved the matter and restored normal service operations. The platform remains fully functional, secure, and accessible to all authorised users,” the statement added

The ministry also clarified the nature of browser security warnings, noting that SSL certificate alerts should not be automatically interpreted as evidence of a cyberattack.

“It is important to note that browser security warnings or SSL certificate-related alerts do not, in themselves, constitute evidence of a cyberattack or data breach,” the statement said.

It further noted that expert opinion referenced in the publication had acknowledged that such alerts could result from routine technical or configuration issues and should not be mistaken for malicious activity.

The ministry stressed that NEMIS remains a key digital platform supporting the collection, management and utilisation of education data across the country and said measures were in place to safeguard its operations.

It stated that it continues to implement “robust security measures, regular system monitoring, infrastructure safeguards, and periodic security assessments” to ensure the platform’s reliability and protection.

Read also: Health inflation rises to 11.8% as price pressures persist

The statement also highlighted the importance of the Nigeria Education Data Infrastructure, describing it as the Federal Government’s flagship framework for improving education data governance, integration, accessibility and evidence-based planning across the sector.