By Abdulrasaq Ahmed Abiodun
In many Nigerian communities, a teenager with a smartphone can find a fraud tutorial more easily than a cybersecurity mentor. That is the quiet failure behind many of the loud headlines about cybercrime.
Nigeria often discusses cybercrime after the damage has been done. A suspect is arrested. A fraud network is exposed. A victim counts the loss. A court announces convictions. Then the country waits for the next case.
That is where Nigeria’s cybercrime response begins too late. But there is another failure that receives less attention: many youth training programmes also end too early.
Training must not end with certificates
Too often, training is treated as a success once certificates are distributed. The photographs are taken, the speeches are delivered, and the programme is declared complete. But the harder questions begin after the final class. Did participants get internships? Did they build portfolios? Did they receive mentorship? Did anyone follow up three or six months later? Did the programme collect feedback and redesign itself around what worked and what failed?
A certificate may prove attendance. It does not prove transformation.
Nigeria’s response begins too late
By the time a young person is arrested for cybercrime, several systems have already failed. The education system failed to teach digital ethics early enough. The labour market failed to provide credible routes from skill to income. The technology ecosystem failed to reach raw talent before criminal networks did. And many empowerment programmes failed when they trained young people without staying with them long enough for training to become work, income and direction.
This is Nigeria’s uncomfortable truth: cybercrime is not only a criminal justice problem. It is also a youth development problem.
That does not excuse crime. Poverty does not justify fraud. Unemployment does not excuse identity theft. Social frustration does not give anyone the right to deceive, steal, blackmail or destroy another person’s life. Cybercrime has real victims, and those victims deserve justice. Criminal networks must be investigated, prosecuted and dismantled.
But enforcement alone cannot build a safer digital future.
Policy is not the same as prevention
Recent research and policy analysis point to a more complex picture than the common claim that young people offend simply because they are unemployed. Unemployment matters, but it does not act alone. Peer pressure, weak cyber ethics, poor mentorship, social inequality, vulnerable financial systems and uneven enforcement also shape youth involvement in cybercrime. If Nigeria treats cybercrime only as a policing problem, it will keep arriving after the harm has already occurred.
Nor is the problem a lack of policy. Nigeria has amended cybercrime legislation, adopted a national cybersecurity strategy, passed a data protection law and moved to protect critical digital infrastructure. It also has police cybercrime capacity, anti-corruption enforcement, emergency response structures and financial-sector fraud monitoring.
These are important tools. But tools are not the same as strategy. The problem is not policy absence. The problem is prevention failure.
These figures are not just statistics. They represent victims, damaged businesses, weakened confidence in digital banking and reputational pressure on honest Nigerians in the global economy.
For international readers, this is not only a Nigerian concern. Cybercrime is transnational. A victim may be in one country, an offender in another, a server in a third and stolen funds routed through several financial channels. INTERPOL’s 2025 Africa cyberthreat assessment warned of a sharp rise in cybercrime across the continent, with online scams, ransomware, business email compromise and digital extortion among the most serious threats.
Nigeria is therefore a test case for many young, connected countries where internet access is expanding faster than ethical digital opportunity. If legitimate routes do not grow quickly enough, cybercrime becomes a development failure with global victims.
But the world must also avoid the lazy stereotype that reduces Nigerian youth to fraud. Nigeria is also producing software developers, fintech innovators, cybersecurity professionals, designers, data analysts, digital marketers and technology entrepreneurs. The same country associated with online fraud is helping to build Africa’s digital future.
The question is whether Nigeria will create enough legitimate doors for its young digital talent to walk through, and whether it will keep those doors open long enough for them to pass through successfully.
A 2025 assessment by the United Nations Office on Drugs and Crime estimated that Nigeria lost about ₦1.1 trillion to cybercrime between 2017 and 2023. In the financial sector, the Nigeria Inter-Bank Settlement System reported that fraud cases rose from 44,947 in 2019 to 95,620 in 2023, while losses increased from ₦2.96 billion to ₦17.67 billion over the same period.
Why cyber talent needs direction
At Craft Innovation Hub, I have seen young people with little formal exposure master digital tools with astonishing speed. Some need only structure, mentorship, and a first legitimate project to move from risky curiosity into productive skill. From the innovation-hub floor, the lesson is clear: talent is not the shortage. Direction is.
That is why Nigeria needs a national Cyber Talent Corps: a practical pipeline that identifies digitally inclined young people and moves them into ethical technology work before criminal networks recruit them.
It should not be another ceremonial empowerment programme built around speeches, photographs and short training sessions. It should be a follow-up-driven public-private initiative that trains young people in cybersecurity, software development, fraud detection, digital forensics, cloud computing, data analysis, artificial intelligence, privacy compliance and responsible digital entrepreneurship.
The Corps should connect training to internships, apprenticeships, certifications, paid projects, startup incubation and jobs. It should track participants after completion, collect feedback from trainees and employers, measure whether training improved income or employability, and redesign future cohorts based on evidence. Banks and telecom companies should support it because they are among the first to feel the cost of digital fraud. Government should support it because youth cyber-skills development is now a national security issue.
A young person who understands phishing can be trained to detect phishing. A student fascinated by networks can become a cybersecurity analyst. A young person who understands online behaviour can become a fraud-prevention specialist, data protection officer, software developer or digital investigator.
This is not soft policy. It is crime prevention.
Cyber ethics should also begin early. Students should not only learn how to use technology. They should learn what happens when technology is abused: the human cost to victims, the legal consequences of cybercrime, the damage to national reputation and the future lost through a criminal record.
The financial sector must strengthen prevention too. Digital fraud survives not only because of individual criminals, but also because of mule accounts, weak identity checks, delayed reporting and fragmented response systems. Faster fraud alerts, stronger account-risk scoring, better SIM-swap controls, quicker transaction recall systems and stronger detection of mule-account networks should become standard.
Nigeria should also change what it measures. Success should not be judged only by arrests, convictions, training attendance or certificates issued. It should be judged by prevention and outcomes. How many young people were redirected before they offended? How many trainees were still engaged six months later? How many entered internships, jobs, paid projects or startups? How many programmes were improved because participants and employers were listened to?
These are not soft questions. They are security questions.
Nigeria’s challenge is not a shortage of digital talent. It is the failure to build enough legitimate routes for that talent and to stay with young people long enough for training to become transformation. If we do not create those routes, criminal networks will continue to create their own.
Nigeria does not have to choose between punishing cybercriminals and empowering young people. It must do both. But without pathways before fraud and follow-up after training, it will keep mistaking activity for strategy.



