The Central Bank of Nigeria (CBN) Website Remains Offline Despite Denial

The Central Bank of Nigeria (CBN) Website Remains Offline Despite Denial

The Central Bank of Nigeria (CBN) website remains offline since I noted many hours ago that it was down. It is over 48 hours here and the site remains offline despite the public notice where CBN claimed its website was never hacked. In short, it has even lost SSL. I think it is time to put this alert: CBN, your Cloudfare configuration was not done well. Your permission rules are wrong and you are blocking many legitimate traffics. You need to go back into Cloudfare setup and change the permission rules. Anonymous, a hacker group, claimed it touched the site as part of the #ENDSARS protest solidarity.

Recorded 4pm, Oct 18 (Sunday WAT – CBN Website Still Offline Here

The Anonymous group, an online network known for launching cyber attacks against government institutions, has claimed responsibility for bringing down the website of the Central Bank of Nigeria. As I type, CBN website – https://www.cbn.gov.ng/ – is offline. I am told that market data is also not accessible. Largely, the central bank of Nigeria is cut-out of the global internet.

The move was taken in solidarity with the #EndSARS protesters.

Update: As at 1.3pm Lagos time on Sunday, this site is not working for most users in the United States. The issue is that most outside Nigeria are blocked. CBN engineers took that decision on collateral damage since the hackers are outside Nigeria. So, if you block them, the site works in Nigeria. The issue is CBN finding a way to allow legal IPs to pass from outside Nigeria.

What the engineers did was smart but after 48 hours it is no more effective as they are still blocking legal traffic which is coming from outside Nigeria. You cannot because you want to block foreign hackers, you block legal users visiting CBN website from outside Nigeria.

Share this post

10 thoughts on “The Central Bank of Nigeria (CBN) Website Remains Offline Despite Denial

  1. And why is the CBN in denial? This is not like propping up naira value or claiming that the economy is in good shape. You cannot deny what is visible to the eyes.

    Let them just quietly go back and do the needful, before another story enters.

    Reply
  2. #ENDSARS #ENDPOLICEBRUTALITY · Edit

    After years of stealing money for cyber security and claiming the central bank had world class security and now look at them, the supposedly most secure institution in Western Africa hacked and removed from the world banking system, I love anonymous abeg.
    So many billions of not trillions dedicated to cyber security and where is that security now? Do they even have a cyber security expert? Thank God this wasn’t done by terrorists or people wanting to deal with Nigeria our economy could have been manipulated or destroyed.

    Reply
  3. I’ve been checking the site since I heard the news on Friday and has worked every time with a pop-up on a youth loan coming soon
    I’ve tried on my phone, desktop and laptop and worked perfectly each time
    Let’s focus now on real news

    Reply
    1. You do not get the point. Update: as at 1.3pm Lagos time on Sunday, this site is not working for most users in the United States. The issue is that most outside Nigeria are blocked. CBN engineers took that decision on collateral damage since the hackers are outside Nigeria. So, if you block them, the site works in Nigeria. The issue is CBN finding a way to allow legal IPs to pass from outside Nigeria. What the engineers did was smart but after 48 hours it is no more effective as they are still blocking legal traffic which is coming from outside Nigeria. You cannot because you want to block foreign hackers, you block everyone visiting CBN website from outside Nigeria. Your site is fine in Nigeria but for those outside, it is not blocked. Hope that helps Seyi.

      Reply
      1. The post actually suggested all traffic without clarifying the ‘targeting’ part
        I’m currently out of Nigeria too but maybe I didn’t notice because all my devices are always on VPN with split-tunnelling always on. Your explanation was succinct and helpful
        Cheers

        Reply
        1. I wrote ” Your permission rules are wrong and you are blocking many legitimate traffics.” I never said “all traffic”. But no issues. I have also included a video to help. Not that it matters, it is to ensure they get it fixed.

          Reply
  4. With kali Linus , the end to end encryption suggests that cbn can not be hacked even with Zylob Kaspersky.. the only thing is that the BWH can be decieved to read multiple users and slow down the website. But when apt. pass/(….) Upgrade is initiated on the central system, system reboot is performed..

    Reply

Post Comment