Web Security Lab @WebSecurityLab
Public-interest cybersecurity & digital trust initiative. Advancing digital safety, rights, and security capacity across Africa. websecuritylab.org Joined January 2024-
Tweets130
-
Followers127
-
Following41
-
Likes31
I emailed ByteToBreach, the threat actor behind the Sterling Bank, Remita, and now Corporate Affairs Commission breaches, with 10 accountability questions. He answered all of them. In my latest piece, I break down the Corporate Affairs Commission breach in full. How he got in. What he accessed. The scale of what was taken, a second access vector into the CAC's systems that he revealed directly to me, not in any published artefact and direct confirmation on whether any corporate records were modified. He also confirmed he was in active ransom negotiations with Sterling Bank for €250,000 before dumping their data. The CAC has since issued a public statement. I break down what it says and what it leaves unanswered. And he told me directly why Nigerian institutions have become his focus. Read the full piece here: securityintelligence.substack.com/p/i-spoke-with…
It is free, open, and published at websecuritylab.org/sterling-bank-…
5. 3,009 employee records enumerated via an unauthenticated API endpoint. 6. Cardinal Stone Partners’ investment database accessed via phpMyAdmin with no network isolation. The report is written for security professionals, CISOs, incident responders, and regulators.
We’ve published Volume I of our ByteToBreach campaign analysis: a full technical post-mortem of the Sterling Bank Plc breach. This report reconstructs the complete attack chain from initial access (March 18, 2026) through to the Cardinal Stone pivot.
You can read more here: websecuritylab.org/coordinated-su…
The affected subdomains were used for SEO spam hosting and redirect-based monetisation infrastructure for an extended period prior to remediation. We found no evidence of intrusion into core NIMC systems. Internal impact assessment remains the responsibility of NIMC.
Web Security Lab has identified and documented coordinated subdomain abuse affecting multiple hosts under the National Identity Management Commission (NIMC) domain namespace.
The incident was identified and responsibly disclosed. Following escalation to the authoritative DNS operator, the affected subdomain was taken offline. 📝 Read the full report here: websecuritylab.org/wp-content/upl…
Hundreds of indexed pages were identified, generating search visibility under a trusted government domain and increasing the likelihood of public exposure.
Web Security Lab has published a technical incident report on a subdomain takeover involving the Nigeria Police Service Commission website infrastructure.
From all of us at Web Security Lab, we wish everyone a Merry Christmas and a safe, secure, and uninterrupted holiday season.
As a certified cybersecurity professional, Jack brings emerging professional capability to Africa’s growing cybersecurity workforce. He represents a new generation of practitioners supporting secure digital growth across the continent.
Big congratulations to @Cy_berJack, one of our Fellows, on passing the CompTIA Security+ certification. Jack is a Fellow of the Web Security Lab Professional Security Fellowship, a structured program focused on developing practical security capability & professional readiness.
Mariam Ibrahim, a corps member, was arrested in October 2025 after the Nigerian Police claimed that a number tied to a January 2024 kidnapping case was linked to her National Identity Number (NIN). There was just one obvious problem: she bought the SIM card in April 2025. I spoke to The Punch Newspaper about how Nigeria’s MSISDN lifecycle management allows new SIM owners to inherit the digital footprint and criminal exposure of previous owners, and why our identity verification infrastructure needs stronger procedural safeguards around number reassignment and investigative protocols. punchng.com/marked-identit…
That’s why conversations like this matter, and why we’re proud to contribute our voice to the broader ecosystem work shaping Africa’s digital future and strengthening a safer, more accountable internet for everyone.
This Saturday, our Founder David Odes joins industry leaders at the Global Data Protection Tech Summit in Lagos. Stronger digital ecosystems grow when people understand how their data is collected, used, and protected—and when organisations act responsibly.
Building cybersecurity capacity begins with people. A stronger, safer digital Africa starts with education and collaboration.
Ukaigwe Roberts @ukaigweroberts
3 Followers 44 Following • Cybersecurity Learner • Certified NBDSP • Truth over trends Tech || Business
Charles Shirer @bsdbandit
25K Followers 27K Following A Hacker who is A Lover of People, and Life @RetroTwinz @Secbsd, @GrumpyHackers, @NovaHackers, @deadpixelsec @hacknotcrime Advocate @PositivelyBlue_ OSCP, OSWP
Oboh(sounds like ''or... @obohdraws
2K Followers 729 Following Visual Artist, || Email: [email protected] Jesus Christ is Lord✝️
A D E I Z A !!! @GoddyGCFR
1K Followers 2K Following Super Dev @InvestBamboo - Software Engineering talks? 📧 [email protected]
God's Gift @RFaZ_23
13 Followers 65 Following .My true product alter-ego.|.|.Product Management|Growth|Personal Development.|.|.Embracing Truth.
p3n_0x0 @p3n_0x0
1K Followers 4K Following Cybersecurity • Digital Forensic • Poetry • Ethical Hacking • Taekwondo • Research • Writing Founder @sacsltd_cyber
AAB @AdesiAdesola
281 Followers 4K Following
Onye Nkiti'n @The_GracedOne
2K Followers 1K Following Social Scientist | Alternative Therapist | Chronic unlearner | Serial Disruptor | Seeker of universal truth | Advocate of Nigeria Restructured
ImajibadeIsmail.nft |... @ImajibadeIsmail
653 Followers 3K Following Building with @letsbuild_dao || intern with @RxLabsHQ || Genesis CM @blockchainrsu || ambassador @halofi_me || Spark Fellow @Africacomicade
DC || Daisi Cash @Cdorf_LA
187 Followers 2K Following Ọlọdẹ'nu'Afẹfẹ || Haven to good fellas; Nemesis to Baddies || ◾ #CyberSec ◾#PenTesting ◾ #Networking ◾#DevCom
Precious @_buzorr
9 Followers 390 Following
Emmanuel @ShegzyMU
1K Followers 5K Following 🇳🇬🇺🇸 ex Consultant at Fortune . Brick by Brick 🧱. BEAD compliance #BEAD RT don’t mean endorsement
Onyedikachi D. Ngidi @Unclegodd
149 Followers 553 Following Jesus Christ | Identity | Questions | Creative genius | knowledge merchant | Truth | Poetry | Discovery |💡 of the 🌍 | Genesis
Leigh Smith | Soverei... @JLeighSmith1
146 Followers 2K Following Automation Specialist. Certified Nail Tech. Building a location independent life from NC to beyond. Story and Soul. Nails and journey: @jleighstorysoul✨💅
Mistah Goddy Graphics @MistahGoddy
249 Followers 322 Following Brand Designer | I help clothing, hair & food brands look professional and attract customers with consistent identity. Packages ranging from 15k+ | DM to Start
victor a'dike @vic26058
128 Followers 3K Following
R✨️ @RahmahAri
110 Followers 287 Following
BlackAdam 🕴️ @i_hizick
2K Followers 3K Following Smart Contract || Security Researcher || Blockchain
Spark (Ø,G) 🟧 @Novatobegreat
62 Followers 2K Following Believing in yourself is the first secret to success
snow white bobo @waaazap
2K Followers 3K Following Software consultant: prev: 4x CTO, 3x Engineering Manager, 2x CEO, 1x Principal Engineer, 1x vp engineering also mentoring @platohq Obsessed with efficiency
Greg @Grege2pu
0 Followers 66 Following
Chimaech Onah @ChimaechOnah
248 Followers 6K Following
The Mœnᅠᅠᅠᅠ�... @lonelynoteus
139 Followers 1K Following Aspiring financial freedomist 😁 through trading 📈📉 if you see any mistake or want to make an insights on my trades pls do i am hungry for knowledge😭
MJ | Cybersecurity An... @itzm_jayyy
394 Followers 4K Following Cybersecurity | Risk Management | Threat Intelligence | Digital Trust Advocate | The real world runs on invisible systems. My job? Keep them alive. 💻
Freddy @ifyalfred
536 Followers 3K Following Identifying 🔍 risks by day, bugs by night ⚠️💻😎 | QA Engineer 🔰| Risk Mgt guy ⚡ | Postman + Cypress lover | JavaScript wrangler| CyberSec | GRC | JW
PauloRossi @PaulPortins
4 Followers 19 Following
Djinni @iamDjinni
44 Followers 924 Following Chaos Engineer/Chaos Analyst/Chaos Hunter ............. passionate afrofuturist
Chu'di! @agbarapaschal
575 Followers 1K Following
'Kome @Kaptain__k
246 Followers 380 Following
Voidman @daVoidman
0 Followers 12 Following
Jae Iornumbe @jaeyerlive
486 Followers 3K Following Writer | CyberSecurity | Web App | IT consultant.
The Clarity Protocol @Go_eazyy
4K Followers 5K Following Markets are psychology. Clarity precedes profit.
'Luda @MichaelRosellen
111 Followers 2K Following Lateral thinking births creativity; critical thinking uncommon; analytical thinking for great minds while traditional thinking is no thinking at all.
Lalo Salamanca @Jankasa4
154 Followers 4K Following My Way!!! I respect the moon's unwillingness to be photographed on a phone.
Kofiani @kofiani
1K Followers 3K Following Africa is not a country, it is a continent with 54 countries. Sociology | Marketer | Enthusiast | Tech
sinri @pointclouding
3 Followers 382 Following Whichever way the world spins, face the other and walk slowly, reaching the end before the beginning; the finish before the start.
Gabriel @deus_plutus
1K Followers 2K Following PhDing @uamshealth | Pharmacy | Health Outcomes Research | Blockchain | Branding | Supply Chain | Tech
@tacitry @tacitry
711 Followers 24 Following I write about what everyone senses but no one says. Careers, power, people.
Olúmáyòwá.dev @akintunero
16K Followers 5K Following DevSecOps | SubSea Cable Networks | Member: @Opticaworldwide #SubOptic @internetsociety @CiscoChampion | Instructor: @CiscoNetAcad | VT💜 | 🧍🏾🕊️💔 12.2.23 |
ngCERT @ngCERTofficial
1K Followers 44 Following Nigeria Computer Emergency Response Team: Protecting Nigeria's Cyberspace. Report incidents to [email protected]
Braimoh Victoria ☁�... @_vikiano
2K Followers 2K Following Ikpemosi | Tech and Travel Creator | AWS Certified | Arsenal FC❤️
TracketPacer @TracketPacer
67K Followers 408 Following 🚀 rockit network engineer | 👩🏼💻🛜professional wire gremlin | she/her (pronouns just to trigger u)
HaxRob @haxrob
15K Followers 454 Following I enjoy breaking things. Telco / mobile and IoT security. Surfing the information super highway one keystroke at a time.
13Cubed @13CubedDFIR
8K Followers 0 Following The official account for 13Cubed. Follow @davisrichardg for my personal account.
The DFIR Report @TheDFIRReport
67K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion
Malwarebytes @Malwarebytes
89K Followers 1K Following All-in-one cybersecurity that's always by your side. Need support? @SupportMWB
David Odes @chiefdavidsays
2K Followers 343 Following Cybersecurity & Privacy Researcher, Speaker and Instructor. Founder @WebSecurityLab. Tweets on how technology, cybersecurity and policy impact society.
Nathan McNulty @NathanMcNulty
18K Followers 1K Following Loves Jesus, loves others | Husband, father of 4, security solutions architect, love to learn and teach | Microsoft MVP | @TribeOfHackers | 🦋@nathanmcnulty.com
Chris Sanders 🔎 �... @chrissanders88
35K Followers 487 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Vivek Ramachandran @vivekramac
26K Followers 5K Following Founder, SquareX (@getsquarex) | (exited) Founder, PentesterAcademy (@securitytube) - acquired by INE (@ine) | Defcon - Blackhat Speaker | Book Author
Dark Web Intelligence @DailyDarkWeb
191K Followers 0 Following We work in the dark to bring clarity to the light.
Oluwaseun Bamidele @AccessoryExpert
3K Followers 3K Following Certified Data Analyst. Volunteer. 💙 Sales of Original Phone Accessories at relatively CHEAPER prices.
Nana-Ama Chioma of Ni... @Hashtag_Nina
811 Followers 977 Following Cultural Storyteller & Heritage Digital Archivist. Helluo Librorum📚 I also manage social media accounts and write for fun. 📧 [email protected]
Kébé (Czas) @kebe_eyong
432 Followers 2K Following Tech & SaaS Content Writer | ∞ Learner | Graduate Engineer | Words, Ideas & Intersections | Languages, Psych, History, Politics | #MUFC | #HalaMadrid |
No_1_best_laptops_&_p... @Data_Ethical
220 Followers 259 Following believer// data scientist// Chemical Engineer// in all things i love football and i love manchester united❤// co_founder @gentlemenseries.com at Choba PH
Reglion @ReginaldEgbu
229 Followers 216 Following /*Web Developer*/ Petroleum & Gas Engineer && Manchester United die hard⛳️
Obyly west @Jb_sky7
5 Followers 110 Following
Daniel Amaihe @DAmaihe
78 Followers 257 Following |I’m a results-driven|BackendDev enthusiasts|There's only one UNITED♥️ | Electronics Engineer 🪖🦺🧰⚙️|Believer🇳🇬
Godsmine @Godzmyne
646 Followers 218 Following B2B Sales & Marketing • Software Engineering • Writer Writes about Tech - AI, Web3, Sales, Marketing and Self Improvement. Curiously trying & sharing new ideas
Focu$ @techrobert194
72 Followers 132 Following SON OF GOD… Cybersecurity Analyst || CEH || Networking || Security+ || Penetration Testing || General Printing.
Geeks and Gadgets @GeeksNdGadgets
442 Followers 992 Following iSell Phones, Tablets and iPads📱 Laptops💻 BT Speakers🔊 Headphones 🎧 Keyboards⌨️ Mouse🖱️ and give tips on picking the best gadget to suit your needs.
Networking Academy @CiscoNetAcad
134K Followers 247 Following Updates on the latest news and events from the Cisco Networking Academy, an IT skills-to-jobs program offering digital skills training.
Rana Khalil 🇵🇸 @rana__khalil
57K Followers 838 Following AppSec Team Lead | OSCP | CEO & Instructor of @ranakhalilacad
Hacking Articles @hackinarticles
297K Followers 478 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
shenetworks @shenetworks
74K Followers 873 Following a menace • hacker • shenetworks @ TikTok & YouTube & Twitch.
The XSS Rat - Proud X... @theXSSrat
165K Followers 1K Following Bug bounty profiles: https://t.co/3Uz5K130ah https://t.co/rzbqV5AmZ2 https://t.co/CDlzXdNvPB
Potentially* @potentially_agi
116K Followers 0 Following Daily drops of open-source code building Collective AI. Open source models • agents • RL envs • datasets. Follow for the best of Potentially* AGI ⚡
vx-underground @vxunderground
438K Followers 357 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Jake Williams @MalwareJake
149K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
John Hammond @_JohnHammond
320K Followers 3K Following Cybersecurity Researcher @HuntressLabs Just Hacking Training @JustHackingHQ w/ @ethicalhacker https://t.co/UtsNJiyiEk && https://t.co/narO3syzIy
TCM Security @TCMSecurity
217K Followers 402 Following Come learn to hack at TCM Security Academy! Veteran owned. Quality results.
Jeremy McDowell @JeremysITLab
21K Followers 976 Following 🇨🇦→🇯🇵 (2014~) I make educational videos about computer networking on YouTube. CCNP・日本語能力試験1級・一人社長
TRÄW🤟 @thatstraw
97K Followers 169 Following I click buttons for a living. Somehow it works. @sysxplore & @netrefio
sysadafterdark @sysadafterdark
14K Followers 2K Following 💻 Bastard Operator From Hell | ❤️ @mandolinsara | 🟡 LibertarianTrends for United States
You might like
