Tag Archive for: nigeria

NCC’s CSIRT warns against banking app-targeting malware | The Guardian Nigeria News

/in


The Computer Security Incident Response Team (CSIRT) of the Nigerian Communications Commission’s (NCC) says it had discovered a newly-hatched malicious software that steals users’ banking app login credentials on Android devices.

NCC’s Director of Public Affairs (DPA), Dr Ikechukwu Adinde, disclosed this in a statement on Sunday, in Abuja.

Adinde explained that the main intent of this malware was to steal credentials, combined with the use of SMS and notification interception to log-in and use potential two-factor authentication tokens.

He said, according to a security advisory from the NCC CSIRT, the malicious software called “Xenomorph”, found to target 56 financial institutions across Europe, had high impact and high vulnerability rate.

“Xenomorph is propagated by an application that was slipped into Google Play store and masquerading as a legitimate application called “Fast Cleaner” ostensibly meant to clear junk, increase device speed and optimise battery.

“In reality, this app is only a means by which the Xenomorph Trojan could be propagated easily and efficiently.

“Fast Cleaner was disseminated before the malware was placed on the remote server, making it hard for Google to determine that such an app is being used for malicious actions.

“This is to avoid early detection or being denied access to the Playstore,” he said.

He further explained that once up and running on a victim’s device, Xenomorph can harvest device information and SMS, intercept notifications and new SMS, perform overlay attacks and prevent users from uninstalling it.

“The threat also asks for Accessibility Services privileges, which allow it to grant itself further permissions.

“The CSIRT said the malware also steals victims’ banking credentials by overlaying fake login pages on top of legitimate ones.

“Considering that it can also intercept messages and notifications, it allows its operators to bypass SMS-based two-factor authentication and log into the victims’ accounts without alerting them.

“The Fast Cleaner app has now been removed from the Play Store but not before it garnered 50,000+ downloads,” he said.

The DPA said that the commission had advised…

Source…

Concerns as cybercriminals unleash SMS-based Android malware — Nigeria — The Guardian Nigeria News – Nigeria and World News

/in


Data services push MTNN revenue to N1.7tr in 2021, as the firm pays N669.2b taxes

Nigerian Communications Commission (NCC) has alerted Nigerians on a new high-risk Short Messaging Service-based malware, TangleBot, infecting Android mobile devices.

TangleBot employs more or less similar tactics as the recently announced notorious FlutBot SMS Android malware that targets mobile devices. TangleBot equally gains control of the device but in a far more invasive manner than FlutBot.

The disclosure was made in a recent security advisory made available to NCC’s New Media and Information Security Department by the Nigerian Computer Emergency Response Team (ngCERT).

TangleBot is installed when an unsuspecting user clicks on a malicious link disguised as COVID-19 vaccination appointment-related information in an SMS message or information about fake local power outages that are due to occur.

NCC explained that the aim behind both or either of the messages (on COVID-19 or impending power outages) is to encourage potential victims to follow a link that supposedly offers detailed information. Once at the page, users are asked to update applications such as Adobe Flash Player to view the page’s content by going through nine dialogue boxes to give acceptance to different permissions that will allow the malware operators to initiate the malware configuration process.

According to the commission, the immediate consequence is that TangleBot gains access to several different permissions when installed on a device, allowing it to eavesdrop on user communications. The malware then steals sensitive data stored on the device and monitors almost every user activity, including camera use, audio conversations, and location, among others.

Furthermore, the malware takes complete control of the targeted device, including access to banking data, and can reach the deepest recesses of the Android operating system.

“The NCC, therefore, wishes to, once again, urge millions of telecom consumers to be wary of such wiles of cybercriminals, whose intent is to defraud unsuspecting Internet users.”

To ensure maximum protection for Internet users in the country, ngCERT has offered a number of preventive…

Source…

Nigeria lags behind Mauritius, Ghana, others in cybersecurity ranking | The Guardian Nigeria News

/in



•Country ranks 47th on global index
•ITU wants govts to block $6tr estimated loss to cybercrime in 2021

Nigeria has ranked 47th on the global cybersecurity index (GCI) 2020. This is even as the global telecoms body ranked Mauritius, Tanzania and Ghana respectively, ahead of Nigeria, in countries in Africa, tackling cybercrimes headlong.
  
The index examined the readiness of International Telecommunications Union (ITU) member countries in curbing the rising cybercrime.
   
The GCI, which ranked 182 countries, is ITU’s document that monitors countries’ growing commitment around the world in tackling and reducing cybersecurity threats.
    
GCI 2020, the index’s fourth iteration, measures the cybersecurity commitments of 193 ITU member states and the State of Palestine. It aimed to identify gaps, serve as a roadmap to guide national strategies, inform legal frameworks, build capacity, highlight good practices, strengthen international standards and foster a culture of cybersecurity.

    
The index disclosed that countries are working to improve their cyber safety despite the challenges of COVID-19 and the rapid shift of everyday activities into the digital sphere.
    
According to GCI 2020, around half of countries globally said they have formed a national computer incident response team (CIRT), indicating an 11 per cent increase since 2018. The rapid uptake of information and communication technologies (ICTs) during the COVID-19 pandemic has put cybersecurity at the forefront.
    
The GCI ranked USA number one ahead of other countries with 100 per cent measures in tackling cybercrime menace across the globe. The United Kingdom and Saudi Arabia tied on second with 99.54 per cent each while Estonia ranked third with 99.48 per cent.
    
On the index, Mauritius, which leads Africa, shared 17th position with Norway at 96.89 per cent. On the list, Egypt is next for Africa, ranking 23rd with 95.48 per cent followed by Tanzania, which ranked 37th with 90.58 per cent, and Ghana is third at 43rd with 86.69 per cent. Tunisia followed Ghana with 86.23 per cent at 45th position, Nigeria is ranked 47th with 84.76 per cent.
     
ITU Secretary-General, Houlin Zhao, affirmed…

Source…