Drone Strikes Expose Nigeria’s Digital Vulnerability and the New Reality of Data Centre Warfare
Recent drone strikes that impacted three Amazon Web Services (AWS) cloud facilities in the United Arab Emirates and Bahrain on March 1 have cast a stark spotlight on Nigeria’s precarious digital independence. The incident serves as a potent reminder that in an increasingly volatile geopolitical landscape, data centres are no longer considered neutral infrastructure but are emerging as legitimate targets. This development raises significant concerns about the inherent vulnerability of economies like Nigeria’s, which are heavily reliant on cloud computing.
Nigeria, boasting a rapidly expanding digital economy, exhibits a profound dependence on foreign cloud systems. Experts warn that any disruption to these offshore infrastructures could trigger a cascade of negative effects, impacting critical sectors such as financial services, government platforms, and everyday commercial activities.
The Growing Reliance on External Cloud Systems
Mr. Smith Osemeke, Founder and Chief Executive Officer of Unitellas Edge Cloud, highlighted that the recent attacks underscore a fundamental imbalance within Africa’s digital ecosystem. He observed that the demand for digital services is escalating at a pace far exceeding the continent’s local capacity to provide them.
“Africa accounts for a mere 0.6 per cent of global data centre capacity, despite a surge in digital adoption,” Osemeke stated. This disparity leaves many nations exposed, with their digital operations contingent on infrastructure located beyond their borders.
Nigeria serves as a prime example of this imbalance. With an estimated 107 million internet users, the country heavily relies on cloud infrastructure hosted in regions like Europe, the United States, and South Africa. Leading fintech companies, including Flutterwave and Paystack, process billions of naira through systems that operate outside Nigeria’s direct jurisdiction. This situation exposes the nation to geopolitical risks that could potentially disrupt financial services, commerce, and national operations with little to no advance warning.
Further exacerbating these risks are domestic constraints. Nigeria currently operates 17 data centres, collectively requiring approximately 137 megawatts of power. However, the national grid supply remains inconsistent, forcing data centre operators to depend on diesel-powered backup systems.
The concentration of infrastructure presents another significant threat. A substantial majority of Nigeria’s data centres and submarine cable landing points are situated in Lagos, creating a critical single point of failure for the nation’s digital backbone.
“Fourteen out of the seventeen data centres are located in Lagos, creating a single point of failure for the nation’s digital backbone,” Osemeke explained. “Nigeria’s dependence on four submarine cable landing stations, all in Lagos, further heightens the risk. The 2024 cuts to WACS, ACE, MainOne, EASSy, and Seacom demonstrated how easily connectivity across West, East, and Southern Africa can be disrupted, leaving millions offline and critical services impaired.”
Beyond physical infrastructure risks, Osemeke also cautioned about the escalating threat of cyberattacks, with financial and government systems being among the most frequently targeted.
A Policy Push for Data and Cloud Sovereignty
In response to these growing vulnerabilities, the Director-General of the National Information Technology Development Agency (NITDA), Kashifu Inuwa Abdullahi, has strongly advocated for the localization of critical data infrastructure as a cornerstone of Nigeria’s digital economy strategy.
Speaking at the Tech Revolution Africa 2026 conference, Abdullahi outlined policies such as the Nigeria Data Protection Act and ongoing data centre expansion initiatives. These measures are designed to bolster national control over digital assets and diminish reliance on foreign systems.
“Talent can be anywhere in the world, but data infrastructure must be built here,” Abdullahi asserted. He further added that Nigeria’s drive towards a sovereign cloud is aimed at enhancing resilience, safeguarding economic value, and positioning the country as a prominent regional data hub.
Nigeria’s sovereign cloud capacity is also being strengthened through Galaxy Backbone (GBB), the Federal Government’s dedicated digital infrastructure provider. GBB states that its Tier III and Tier IV data centres are engineered to meet global standards for reliability, security, and uptime, thereby supporting the nation’s objectives for local data hosting and digital independence.
One of GBB’s flagship Tier IV data centres, the company claims, offers near-continuous availability and full fault tolerance. This capability ensures that systems can remain operational even in the event of multiple failures, a crucial level of resilience for hosting sensitive national platforms and maintaining continuity during disruptions.
Beyond physical infrastructure, Galaxy Backbone provides comprehensive cloud, connectivity, and cybersecurity services to public institutions, supported by an expanding national fibre optic network. Analysts suggest that a wider adoption of such sovereign infrastructure could significantly reduce Nigeria’s exposure to offshore risks while simultaneously strengthening its control over vital data assets.
Addressing Structural Gaps and Enhancing Resilience
Osemeke emphasized that Nigeria must elevate digital infrastructure to the status of a national security priority, necessitating both significant policy reforms and architectural adjustments.
“This requires a comprehensive National Digital Infrastructure Security Act that sets mandatory resilience standards, enforces continuity testing, and clearly defines the shared responsibilities of public and private operators,” he proposed.
He also called for the adoption of a more distributed data centre architecture, advocating for facilities to be established in cities beyond Lagos, such as Abuja, Port Harcourt, Kano, and Enugu. This diversification would effectively mitigate geographic concentration risks.
Furthermore, Osemeke stressed the imperative of implementing more robust system design standards.
“To mitigate this systemic exposure, Nigeria must enforce multicloud, multiregion architectures across critical sectors,” he stated. “Relying on a single cloud provider or a single geographic region is no longer acceptable in a world where data centres have become military targets.”
Business Continuity Risks in a Cloud-Driven Economy
Nigeria’s digital economy is experiencing a period of rapid expansion, with sectors such as payments, e-commerce, and public services increasingly dependent on cloud infrastructure for their operations.
Osemeke issued a stern warning: any prolonged outage, whether caused by geopolitical conflict, cyberattacks, or infrastructure failure, could trigger widespread societal disruption. “Nigeria’s financial inclusion gains, digital public services, and daily commercial activity all hinge on uninterrupted cloud availability, making resilience a matter of national stability,” he explained.
He further highlighted that critical systems, including banking records, identity databases, and tax platforms, necessitate secure offline backups and regular stress testing to guarantee continuity during crises.
The recent attacks on AWS facilities, Osemeke noted, reflect a broader global shift in risk perception. Countries worldwide are now reassessing their control over their digital infrastructure. For nations like Nigeria, the transition from digital dependence to digital sovereignty is no longer a matter of choice but a strategic imperative for future security and stability.
