Connect with us

Technology

NCC Warns Nigerians About New Smartphone Attacking Virus

Published

on

AbstractEmu

By Adedapo Adesanya

The Nigerian Communications Commission (NCC) has alerted telecom consumers and the general public that a new Android malware named ‘AbstractEmu’, had been discovered.

NCC said the malware can gain access to smartphones, take complete control of infected smartphones and silently modify device settings while simultaneously taking steps to evade detection.

This discovery was announced recently by the Nigerian Computer Emergency Response Team (ngCERT), the national agency established by the Federal Government to manage the risks of cyber threats in Nigeria, which also coordinates incident response and mitigation strategies to proactively prevent cyber-attacks against Nigeria.

“AbstractEmu has been found to be distributed via Google Play Store and third-party stores such as the Amazon Appstore and the Samsung Galaxy Store, as well as other lesser-known marketplaces like Aptoide and APKPure,” the report said.

The advisory stated that a total of 19 Android applications that posed as utility apps and system tools like password managers, money managers, app launchers, and data saving apps have been reported to contain the rooting functionality of the malware.

The apps are said to have been prominently distributed via third-party stores such as the Amazon Appstore and the Samsung Galaxy Store, as well as other lesser-known marketplaces like Aptoide and APKPure. The apps include All Passwords, Anti-ads Browser, Data Saver, Lite Launcher, My Phone, Night Light and Phone Plus, among others.

According to the report, rooting malware although rare, is very dangerous. By using the rooting process to gain privileged access to the Android operating system, the threat actor can silently grant itself dangerous permissions or install additional malware – steps that would normally require user interaction. Elevated privileges also give the malware access to other apps’ sensitive data, something not possible under normal circumstances.

The ngCERT advisory also captured the consequences of making their devices susceptible to AbstractEmu attacks. Once installed, the attack chain is designed to leverage one of five exploits for older Android security flaws that would allow it to gain root permissions. It also takes over the device, installs additional malware, extracts sensitive data, and transmits to a remote attack-controlled server.

Additionally, the malware can modify the phone settings to give the app ability to reset the device password, or lock the device, through device admin; draw over other windows; install other packages; access accessibility services; ignore battery optimisation; monitor notifications; capture screenshots; record device screen; disable Google Play Protect; as well as modify permissions that grant access to contacts, call logs, Short Messaging Service (SMS), Geographic Positioning System (GPS), camera, and microphone.

The ngCERT also asserts in the advisory that, while the malicious apps were removed from Google Play Store, the other app stores are likely distributing them. Consequently, the NCC wishes to reiterate a two-fold ngCERT advisory in order to mitigate the risks. The two-fold advisory include:

  1. Users should be wary of installing unknown or unusual apps, and look out for different behaviours as they use their phones.

2. Reset your phone to factory settings when there is suspicion of unusual behaviours in your phone.

The NCC, in the exercise of its mandate and obligation to the consumers, said it “will continue to sensitise and educate telecoms consumers on any cyber threat capable of inflicting low or high-impact harms on their devices, whether discovered through the ngCERT or the telecom sector’s Centre for Computer Security Incident Response managed by the Commission.”

Business Post had earlier reported that the commission had warned telecom consumers of the existence of new, high-risk and extremely damaging, Android device-targeting Malware called Flubot and outlined steps to prevent the eir devices from being attacked by the virus.

Adedapo Adesanya is a journalist, polymath, and connoisseur of everything art. When he is not writing, he has his nose buried in one of the many books or articles he has bookmarked or simply listening to good music with a bottle of beer or wine. He supports the greatest club in the world, Manchester United F.C.

Technology

Cyber Attacks: Africa Must Encourage Digital Skills Development—Experts

Published

on

Adopt Digital Skills

By Aduragbemi Omiyale

Urgent steps must be taken by African leaders to encourage general digital skills to tackle cyber-attacks and crimes on the continent, some experts in the industry have advised.

Speaking at the April edition of the Information Security Society of Africa – Nigeria (ISSAN) event, the stakeholders warned that if efforts are not taken, the governments, citizens and businesses may suffer “catastrophic consequences.”

It was stressed that at the moment, Africa is struggling to match its counterparts in the other parts of the globe due to a shortage of general digital skills caused by brain drain.

At the workshop themed Addressing the Cybersecurity Skills Quagmire, the founder/CEO of Digital Jewels, Mrs Doyin Odunfa, in her presentation, lamented that the shortage of general digital skills at all levels is expected to become more critical as economies grow, noting that the supply of digitally skilled labour must also increase to meet anticipated labour market needs.

She observed that highly skilled African professionals have been emigrating from African countries to pursue lucrative cultural and socio-economic opportunities on other continents leading to a brain drain and skills gap on the continent.

Whilst proffering solutions, she recommended intentional development of digital skills at all levels, smart technology support, collaboration with the Diaspora and strategic supply to Africa and Western economies.

“These young Africans are looking for higher-paying jobs outside Africa to escape socio-economic limitations such as poverty, limited infrastructure, and rudimentary jobs.

“They look for enabling environments in developed countries that provide rewarding businesses and obtain lucrative jobs, matching skilled individuals’ aspirations and expected socio-economic recompense.

“Many highly talented African students that obtain opportunities and scholarships of training abroad do not return home after completing studies,” Mrs Odunfa stated.

In his welcome address, the president of ISSAN, Mr David Isiavwe, said the brain drain in Africa as well as the digital skills shortage currently being experienced around the world calls for concern.

According to him, “The cyber threat landscape is still evolving. The cybersecurity space keeps getting very busy by the day. We have seen how daring cybercriminals can be, targeting both national assets and highly reputable firms. Even individuals are not left out.

“Consequently, it becomes imperative that organizations never relent in upholding and reinforcing information security best practices.”

The Chief Information Security Officer (CISO) of Stanbic IBTC, Abumere Igboa; CISO of Heritage Bank, Eduje Ighoakpo; CISO of First Bank, Harrison Nnaji; CISO of Standard Chartered Bank, Oghenefovie Oyawari and the Chief Technical Officer (CTO) of Digital Jewels, Tokunbo Taiwo, were the other speakers at the gathering.

ISSAN is a not-for-profit organization dedicated to the protection of Nigeria’s cyberspace. It is significantly involved in ensuring the security of banking systems and applications, ATMs, e-government systems, and the entire cyberspace in Nigeria.

The group also seeks to achieve its objectives through awareness heightening measures including the promotion of appropriate legislation and best practices.

Membership cuts across both public and private sectors of the economy including Banks, Telecommunications Operators, Government parastatals, switching companies, IT and IT security consultancies, Legal Practitioners with a keen interest in cyber-related matters, and regulators.

Continue Reading

Technology

Interswitch Receives Fresh Funds from LeapFrog, Tana

Published

on

Interswitch

By Adedapo Adesanya

LeapFrog Investments (LeapFrog) and Tana Africa Capital (Tana) have invested in Interswitch, one of Africa’s technology-driven companies focused on the digitisation of payments.

In a joint statement from both companies, the exact amount was not disclosed, but it was stated that the investment will assist in supporting the company’s drive to advance the payment ecosystem across the continent.

A portion of the investment has been acquired from existing shareholders, with Ignite Holdco Limited, made up of Helios Investment Partners and TA Associates, remaining the largest shareholder in the business following the transaction.

Interswitch Group CEO, Mr Mitchell Elegbe, in a statement, said the company was “excited to welcome LeapFrog and Tana on board, as we continue our work to advance the future of the African payments landscape.”

This will further advance its offerings after it launched some new products in March.

The services unveiled include an enhanced Biometrics feature for Point of Sale (PoS) terminals & Automated Teller Machines (ATMs); Tokenization, and Card Fusion, with the services addressing digital payment fraud, problems with card issuance and portfolio management.

Interswitch, in collaboration with SterlingPRO, designed the Biometrics on Point of Sale (PoS) and Automated Teller Machines (ATMs) to protect customers against digital payment fraud and to avail them faster and more convenient ways to validate payments. The solution utilizes physiological features unique to everyone such as fingerprints, voice, and facial features to verify payment transactions.

Tokenization on the other hand replaces sensitive data such as the 16-digit account information with a unique digital identifier known as a token. Tokenization will enable merchants to fast-track and collect payment seamlessly, enabling customers to check out faster in-store, in-app and online.

In addition, Card Fusion is a web-based instant card issuance platform that enables banks to conclude new card production requests and issue cards within a very short time, thus enhancing their customers’ experience while customers get to personalize their cards instantly.

Interswitch is one of Africa’s largest electronic payments and infrastructure companies and services providing online banking system offerings in areas like point-of-sale terminals, online consumer payment platforms, Quickteller, and Verve, the biggest domestic debit card scheme in Africa, issuing over 35 million active cards since launch.

Continue Reading

Technology

Ramadan: Twitter Conversation Increases 31% in 2022

Published

on

Ramadan: Twitter Conversation Increases 31% in 2022

By Adedapo Adesanya

In 2022, Twitter was the place to be for the most interesting, important and impactful Ramadan conversations, with over 47 million related Tweets recorded globally during the holy month. This represented a 31 per cent year on year increase from last year, reflecting Twitter’s role as the place to discover what is happening in real-time.

From well-wishes to fashions and bants, it was all shades of amazing as Nigerians joined Islamic faithful across the globe to commemorate the holy month, from start to finish.

Trending conversations on the platform centred around faith, style, food, entertainment and so much more, as people on Twitter shared how they were marking the end of Ramadan.

Twitter provided a platform to showcase the shared experience of attending morning prayers, making charitable donations, sharing feasts and showing up in the glamorous fits and looks. Below are some highlights from this year’s Ramadan celebrations.

Some of the top Ramadan hashtags and keywords on TwitterNG that trended during the Ramadan celebration were – #Arewatwitter; #EidUlFitr; #BarkaDaSallah; #EidMubarak2022; #Ramadan; Abaya; Ilorin.

Fashion and Styles during the celebration were not exempted as the end of Ramadan is celebrated with the most elegant fashion styles on display. Using #ArewaTwitter, Muslims across Nigeria share photos from Eid celebrations; with people in the North, where Islam is most widely practised, being especially praised for their iconic looks. As expected, people on #TwitterNG brought out their best Abaya game!

Embed Tweets:

https://twitter.com/mshs675/status/1521152018148171778?s=20&t=TVoP4NWxbCtS9swCDKDLKA

https://twitter.com/taxfeeq/status/1521092719103426560?s=20&t=TVoP4NWxbCtS9swCDKDLKA

Heartfelt Felicitations on #TwitterNG were a presence with Barka Da Sallah was widely used on #TwitterNG as a way of sending well-wishes during the celebrations. And using #EidUlFitr, #EidMubarak2022 #Ramadan, the Muslim community also dropped engaging Tweets to commemorate the end of Ramadan.

Embed Tweet:

https://twitter.com/babban_officer/status/1521238206485835784?s=20&t=QOTJe1vcloorWJ-GnFOUGA

The banters were also part of the affair. While awaiting the moon sighting update from Saudi Arabia, people on Twitter couldn’t hide their anticipation to end the fast. These hilarious Tweets had Twitter buzzing and cracking up before Eid al-Fitr

Embed Tweet:

https://twitter.com/Kemmy_Hammed/status/1520493502320328704?s=20&t=1qljCQjNFGCG0TLYUIj77Q

Another moment that got people talking was a tweeted photo showing a dense crowd of people in a popular mall in Ilorin.

Embed Tweet:

https://twitter.com/Postsubman/status/1521163328168550401?s=20&t=zkzL0CF0lPLzczBSeqXFPA

Top government officials and influencers also engaged in conversations during Ramadan with President Muhammadu Buhari ( @MBuhari) tweeting for the first time in a while, wishing the TwitterNG community Ramadan Mubarak.

Mr Yemi Osinbajo, The Vice President of Nigeria also wished people on Twitter a Happy Eid al-Fitr.

Embed Tweet:

https://twitter.com/MBuhari/status/1521077805685121025

Ramadan Tweets from across the globe were also added to global conversations highlights related to the holy month:

The symbol used to send salutations upon the Prophet Muhammad (PBUH) ﷺ was Tweeted almost 4 million times, while top Ramadan-related emojis included:

🌙 (A crescent moon); 🙏🏽 (Folded hands );🕌 (mosque); 🙏🏽  (Palms held up together)

Top Ramadan hashtags Tweeted at a global level included:

رمضان# (Ramadan);

#Ramadan;

افطار# (Iftar);

#العشر_الاواخر (Last 10 days of Ramadan)

Twitter, in celebration of Eid Al Fitr, released a hashtag-triggered emoji of the crescent moon when these hashtags below were used during the week of Eid.

عيد_الفطر#;

عيد_مبارك#

كل_عام_وأنتم_بخير#

عيد#

#EidalFitr

#HappyEid

#EidMubarak

#Eid

Continue Reading

Latest News on Business Post

Like Our Facebook Page

%d bloggers like this: