NCC Warns Nigerians Against A New Malware
The notable agency responsible for communication control in Nigeria. The Nigerian Communications Commission (NCC) has warned Nigerian telecoms users against a new, very risky malware known as FluBot.
According to the statement released by the Nigeria Computer Emergency Response Team(NgCERT). Androids phones with weak security updates and insecure app installation are more vulnerable to FluBoT.
The NgCERT further expressed that FluBot sometimes comes in form of android mobile banking applications. This impersonation is to generate a fake view on victim applications.
Its major aim is to steal internet users’ data. They also steal credit cards information or online banking private data.
The Director of Public Affairs, Dr Ike Adinde, approved an NCC statement. The statement contains an NCC explanation of FluBot malware. It explains how FluBot can spread through SMS (Short Message Service).
And can also spy on incoming calls, notifications, read or write messages, make a call and send the victim’s contacts to its operation centre.
Most times, the malware penetrates Android devices in the form of popular companies. It can pretend to be Chrome, Correos, FedEx, and DHL. And compelling ignorant users to change their mobile device accessibility to uphold permanent existence on the device.
The malware destroys devices’ security through the method of duplicating fake login walls of notable banks. Whenever the users input their login details on the fake pages.
Their data will be copied and transferred to the malware operation centre. The data will be exploited in the operation point by collecting bank OTPs (One Time Passwords) and changing the device’s default SMS app.
Therefore, FluBot gains access to the device through SMS. And then move on to transfer the same messages to everyone on the user contact list. Thereby luring them to install the fake app on their device.
When malware gain access to a device, it can lead to huge financial losses. Moreover, FluBot creates an unauthorized entry, having total access to the user device, hence allowing the attacker to engage in other illegal activities. This includes initiating other types of malware.
In the deep understanding of this discovery. And knowing how this malware operates. In the course of protecting millions of telecom users against the criminal forces, who are using telecom platforms to engage in fraud and cause damages.
The NCC repeated the advice of NgCERT. NgCERT told Nigerians not to click on a link from a pessimistic text message. It also warned that Nigerians should avoid any page asking users to install any app or update app security.
NCC also added that telecom users should use up-to-date antivirus software. To set covers and avoid malware infections. Assign significant patches to the device and application.
Nigerians are urged to use strong passwords and allow Two-way authentication (also Two Factor Authentication) over every login. Back up your data every time.
Anybody that is already affected by this issue, is advised to change his/her device to factory mode immediately. This will erase every data on the phone, including confidential data.
Nigerians were also advised to avoid the act of restoring backups after installing the app. In case of emergency, send a mail to email@example.com.
Meanwhile, the commission is putting in more effort in assuring improvement on broadband access. This will allow telecoms users to continue their legal activities productively online.
The commission also states it’s a dedication to educating telecom users through useful information to shield them from being a victim of any kind of cyber breach while online.