20.
21.
22.
Any
person
being
authorized
by
any
financial
institution
and
charged
with
the
responsibility
of
using
computer
or
other
electronic
devices
for
financial
transactions
such
as
posting
of
debit
and
credit,
issuance
of
electronic
instructions
as
they
relate
to
sending
of
electronic
debit
and
credit
messages
or
charged
with
the
duty
of
confirmation
of
electronic
fund
transfer,
unlawfully
with
the
intent
to
defraud
issues
false
electronic
or
verbal
messages
is
guilty
of
an
offence
and
is
liable
to
imprisonment
for
7
years.
(1)
Any
person
or
institution,
who
operates
a
computer
system
or
a
network,
whether
public
or
private,
must
immediately
inform
the
National
Computer
Emergency
Response
Team
(CERT)
Coordination
Center
of
any
attacks,
intrusions
and
other
disruptions
liable
to
hinder
the
functioning
of
another
computer
system
or
network,
so
that
the
National
CERT
can
take
the
necessary
measures
to
tackle
the
issues.
(2)
In
such
cases
mentioned
in
subsection
(1)
above,
and
in
order
to
protect
computer
systems
and
networks,
the
National
CERT
Coordination
Center
may
propose
the
isolation
of
affected
computer
systems
or
network
pending
the
resolution
of
the
issues.
(3)
Any
person
or
institution
who
fails
to
report
any
such
incident
to
the
National
CERT
within
7
days
of
its
occurrence,
commits
an
offence
and
shall
be
liable
to
denial
of
internet
services.
Such
persons
or
institution
shall
in
addition,
pay
a
mandatory
fine
of
N2,
000,000.00
into
the
National
Cyber
Security
Fund.
(1)
Any
person
who
is
engaged
in
the
services
of
any
financial
institution,
and
as
a
result
of
his
special
knowledge
commits
identity
theft
of
its
employer,
staff,
service
providers
and
consultants
with
the
intent
to
defraud
is
guilty
of
an
offence
and
upon
conviction
shall
be
sentenced
to
7
years
imprisonment
or
N5,000,000.00
fine
or
both.
(2)
Any
person
who
fraudulently
or
dishonestly
makes
use
of
the
electronic
signature,
password
or
any
other
unique
identification
feature
of
any
other
person;
or
(3)fraudulently
impersonates
another
entity
or
person,
living
or
dead,
with
intent
to
-‐
(a)
gain
advantage
for
himself
or
another
person;
(b)
obtain
any
property
or
an
interest
in
any
property;
(c)
cause
disadvantage
to
the
entity
or
person
being
impersonated
or
another
person;
or
(d)
avoid
arrest
or
prosecution
or
to
obstruct,
pervert
or
defeat
the
course
of
justice.
(4)
any
person
who
makes
or
causes
to
be
made,
either
directly
or
indirectly,
any
Fraudulent
issuance
of
E-‐
Instructions.
Reporting
of
Cyber
Threats.
Identity
theft
and
impersonation.