The Nigeria Police Force National Cybercrime Centre (NPF–NCCC) has arrested suspects linked to coordinated cyberattacks on Microsoft 365 email systems used by corporate, financial and educational institutions.
The arrests followed intelligence from Microsoft Corporation, transmitted through the United States Federal Bureau of Investigation (FBI), which exposed the use of a phishing toolkit known as RaccoonO365 to harvest login credentials via fake Microsoft authentication pages.
According to the police, investigations traced multiple cases of unauthorised access to Microsoft 365 accounts between January and September 2025 to phishing emails that enabled business email compromise, data breaches and financial losses across several jurisdictions.
Read Also: Police ACP Slumps, Dies During Meeting in Abakaliki
A joint, intelligence-led operation involving the NPF–NCCC, Microsoft, the FBI and the United States Secret Service led to the arrest of three suspects in Lagos and Edo states. Laptops, mobile phones and other digital devices recovered from the suspects were subjected to forensic analysis and linked to the cybercrime operation.
Police identified Okitipi Samuel, also known as “RaccoonO365” and “Moses Felix,” as the principal suspect and alleged developer of the phishing infrastructure.
He is accused of selling phishing links via a Telegram channel for cryptocurrency payments and hosting fake login portals using stolen or fraudulently obtained credentials. Investigators said the other two suspects were not linked to the creation of the phishing scheme.
The Nigeria Police Force said investigations are ongoing and reaffirmed its commitment to protecting Nigeria’s digital space through technology-driven policing and international cooperation.
