Nigerian Government Refutes Claims of Data Breach in IPPIS System
The Office of the Accountant General of the Federation of Nigeria, has strongly refuted concerns regarding a potential data breach within Nigeria’s Integrated Personnel and Payroll Information System (IPPIS).
In a statement signed by Bawa Mokwa, Director of Press and Public Relations at the OAGF, the office assured Nigerian civil servants that their data remains secure, and the integrity of the system has not been compromised.
The concerns arose following media reports claiming that the payroll validation section of the IPPIS website had been hijacked, leading to the suspension of some OAGF staff. Reports suggested that an expired security certificate might have exposed employee information, leaving it vulnerable to hackers, phishing attacks, and unauthorized salary deductions.
However, the OAGF categorically dismissed these claims, clarifying that no sensitive information is stored on the IPPIS website. It explained that IPPIS operations, including payroll management, are conducted through a separate, secure platform.
“The website is the medium to share information. Neither payroll nor payment is made through the website; therefore, no data is contained in the website,” the statement emphasized.
The OAGF further reassured the public that the IPPIS system is protected by a robust ICT security policy, which complies with global cybersecurity standards, safeguarding the platform from unauthorized access or data breaches. A secure payroll validation process, supported by HELIX-FONS technology, has since been completed, and the portal used for validation has been permanently shut down.
This clarification comes amid growing concerns about government IT security, especially following recent incidents. For instance, in June 2024, a digital rights group accused AnyVerify of selling sensitive Nigerian data, including the National Identity Number (NIN), online for ₦100. Similarly, the National Identity Management Commission (NIMC) flagged five websites for allegedly misusing Nigerians’ data without authorization.
With IPPIS being a vital system for ensuring timely salary payments, the alleged data breach reports naturally triggered alarm among civil servants. However, the OAGF’s firm assurance highlights the continued security of the platform and the protection of personnel data.
Source: Techpoint
