The Special Fraud Unit of the Nigerian Police, Ikoyi, Lagos, has recently arraigned two young students, Timothy Fashina Oluwabukola and Anthony Imonina Odemerho, before the Federal High Court in Lagos.
They stand accused of hacking into the systems of MTN Nigeria Communication Plc and illegally siphoning airtime and data valued at a staggering N1.9 billion. This case has attracted significant attention, highlighting the increasing prevalence of cybercrime in Nigeria and raising concerns about the vulnerability of large corporations to such sophisticated attacks.
Oluwabukola and Odemerho, students at Moshood Abiola Polytechnic (MAPOLY) in Abeokuta, Ogun State, and Resign Regal Academy in Benin City, Edo State, respectively, were charged alongside other individuals who remain at large. The charges against them include conspiracy,
Unauthorized access to MTN’s web-based platform known as the Application Programming Interface (API), and the unlawful conversion of data and airtime for personal gain. These serious offenses fall under various sections of the Cybercrime (Prohibition, Prevention, etc.) Act of 2015 and the Money Laundering (Prevention and Prohibition) Act of 2022.
The alleged crimes occurred between January and April of 2024, across Lagos and Edo states, where the defendants are said to have orchestrated a complex scheme to infiltrate MTN’s API. Using illegally obtained authorization keys and passwords, they allegedly accessed the company’s systems, extracted large volumes of airtime and data, and subsequently sold these to the public, pocketing the proceeds.Â
The Prosecutor in the case has described the operation as a highly organized cyber heist that not only caused substantial financial losses to MTN but also posed a significant threat to the integrity of corporate digital infrastructure in Nigeria.
During their court appearance before Justice Akintayo Aluko, both Oluwabukola and Odemerho pleaded not guilty to the four counts leveled against them. Their not-guilty plea set the stage for what promises to be a highly scrutinized legal battle. Following their plea, the Prosecutor requested the court to set a trial date and to remand the defendants in the custody of the Nigerian Correctional Services (NCoS) pending the outcome of the trial.
However, the defense attorneys representing the two students informed the court that they had already filed bail applications for their clients, which had been duly served on the Prosecutor. Acknowledging receipt of these applications, the Prosecutor requested a brief adjournment to review the documents and prepare a response.
In light of these developments, Justice Aluko adjourned the case until August 5, when the court will hear the bail applications. The outcome of this hearing will be closely watched, as it will determine whether the defendants will remain in custody or be released on bail pending trial.
The charges against Oluwabukola and Odemerho are both serious and detailed. According to the charge sheet, the defendants are accused of conspiring to intentionally and without authorization gain access to MTN’s computer systems with the intent to extract data. This data was then allegedly used to defraud the telecom giant of N1.9 billion.
The charges further allege that the defendants unlawfully manipulated MTN’s computer system authorization keys and passwords, enabling them to access the API platform and fraudulently obtain airtime. This airtime was converted into data and sold to unsuspecting members of the public, with the proceeds being used for the personal benefit of the accused.
The case has also drawn attention to the broader implications of cybercrime in Nigeria, particularly the ease with which young, tech-savvy individuals can exploit weaknesses in corporate digital security systems. It raises important questions about the adequacy of existing cybercrime laws and the effectiveness of enforcement agencies in curbing this growing threat. Moreover, it underscores the need for companies to invest in more robust cybersecurity measures to protect their assets from similar attacks.
As the legal process unfolds, there is likely to be increased focus on the methods allegedly used by the defendants and the impact of their actions on both MTN and the wider business community. The case may also set a precedent for how the Nigerian legal system handles such high-profile cybercrime cases, particularly when they involve large-scale financial fraud.
In the meantime, the accused students await their fate, with their future now hanging in the balance as they face the prospect of lengthy prison sentences if found guilty. Their case serves as a stark reminder of the serious consequences of engaging in cybercrime and the far-reaching impact such actions can have on individuals, companies, and the economy at large. As society becomes increasingly dependent on digital platforms, the need for vigilance and strong legal frameworks to combat cyber threats has never been more critical.
