Home » Security » Be wary of new IGVM Ransomware – NITDA urges internet users

Be wary of new IGVM Ransomware – NITDA urges internet users

NITDA says IGVM, a file-encrypting Ransomware infection that restricts access to data by encrypting files with the “igvm” extension. It attempts to extort money from victims by requesting for “ransom”, in the form of Bitcoin cryptocurrency in exchange for access to data

Advertisement

IT News Nigeria:

The National Information Technology Development Agency (NITDA) advises Nigerians to be wary of IGVM, a file-encrypting Ransomware infection that restricts access to data (documents, images, videos) by encrypting files with the “igvm” extension. It attempts to extort money from victims by requesting for “ransom”, in the form of Bitcoin cryptocurrency in exchange for access to data.

This crypto-virus spreads in different methods like web injectors, pirated software, spam emails, malicious software bundles, fake software updates, and deceiving online ads.

The primary task of IGVM ransomware virus is to check your computer system for target file formats and encrypt them using a private RSA key. Once virus locks the files, it then runs several commands via CMD.exe to delete Volume Shadow Copies from your system. It equally prevents the victims from restoring their file copies for free, using Windows tools. Next, the virus modifies Windows HOSTS file by adding a list of domains to it. These domains are mostly computer or IT-relates websites, so the attackers capitalize on this measure to prevent the victim from seeking help or information online.

NITDA is hereby urging general public to follow these recommendations:

  • Ensure regular data backup and recovery plan for all critical information.
  • Use application whitelisting to help prevent malicious software and unapproved programs from running.
  • Keep operating system and software up-to-date with the latest patches.
  • Maintain up-to-date anti-virus software, and scan all software downloaded from the internet beforeinstalling.
  • Do not follow unsolicited web links in emails.
  • Do not download or open suspicious email attachments.
  • Do not open emails from suspicious recipients.
READ ALSO  Food shortages, prices about to soar

Furthermore, if paying up seems like the only reason to get your files back, we strongly advise against ransom payments. Various cybersecurity experts do not recommend paying up due to the following reasons:

  • The criminals might stop responding as soon as you transfer money to their virtual wallet address;
  • The so-called decryption tool can be faulty or fail to work due to data modification on your end;
  • Avoiding funding this illegal business model. The fact that ransomware operators collect millions in ransoms each year  simply encourages people to join this cybercrime industry.

Share This:

Leave a Reply

Your email address will not be published. Required fields are marked *

*

x

Check Also

Blockchain

Digital Encode to train Journalists on Blockchain Technology

Blockchain: Digital Encode says IT media ...

WhatsApp NITDA

NITDA sets new data safety agenda

NITDA has said Nigerians online is ...

HP wolf

How attackers exploit zero-day vulnerability – HP new Research

HP Wolf Security threat research team ...

NCC Danbatta

Emergency centres now 24 – Danbatta

NCC’s Danbatta has said emergency centres ...

5g new ITR ncc regulator 3.5GHz Spectrum social media

Nigeria: Watchdog alerts internet users on new high-risk malware

NCC has raised the alarm on ...

Skip to toolbar