The Central Bank of Nigeria (CBN) website remains offline since I noted many hours ago that it was down. It is over 48 hours here and the site remains offline despite the public notice where CBN claimed its website was never hacked. In short, it has even lost SSL. I think it is time to put this alert: CBN, your Cloudfare configuration was not done well. Your permission rules are wrong and you are blocking many legitimate traffics. You need to go back into Cloudfare setup and change the permission rules. Anonymous, a hacker group, claimed it touched the site as part of the #ENDSARS protest solidarity.
Recorded 4pm, Oct 18 (Sunday WAT – CBN Website Still Offline Here
The Anonymous group, an online network known for launching cyber attacks against government institutions, has claimed responsibility for bringing down the website of the Central Bank of Nigeria. As I type, CBN website – https://www.cbn.gov.ng/ – is offline. I am told that market data is also not accessible. Largely, the central bank of Nigeria is cut-out of the global internet.
The move was taken in solidarity with the #EndSARS protesters.
Update: As at 1.3pm Lagos time on Sunday, this site is not working for most users in the United States. The issue is that most outside Nigeria are blocked. CBN engineers took that decision on collateral damage since the hackers are outside Nigeria. So, if you block them, the site works in Nigeria. The issue is CBN finding a way to allow legal IPs to pass from outside Nigeria.
What the engineers did was smart but after 48 hours it is no more effective as they are still blocking legal traffic which is coming from outside Nigeria. You cannot because you want to block foreign hackers, you block legal users visiting CBN website from outside Nigeria.