Home » NCC » Beware of new phishing attack without security alerts – NCC-CSIRT
5g new ITR ncc regulator 3.5GHz Spectrum social media

Beware of new phishing attack without security alerts – NCC-CSIRT

NCC says a new Phishing Attacks can load a malicious QBot malware on the compromised device without triggering any Windows security alerts

Advertisement

 

IT News Nigeria:

 

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has warned that a new Phishing, Attacks Exploit Windows Zero-Day Vulnerability, can load a malicious QBot malware on the compromised device without triggering any Windows security alerts.

A statement weekend credited to Director, Public Affairs at NCC, Reuben Muoka, said in its advisory, NCC-CSIRT indicated that the vulnerability, which is present in all versions of Windows-based products, presents as Phishing Attacks and Malware threats.

 

NCC-CSIRT reports that ProxyLife security researcher discovered the new phishing exploit on Windows zero-day vulnerability to drop a Qbot malware without displaying Mark of the Web (MoTW) security warnings.

 

“To take advantage of the Windows Mark of the Web zero-day vulnerability, threat actors have switched to a new phishing strategy that involves propagating JS files (plain text files that include JavaScript code) signed with forged signatures. The newest phishing attempt begins with an email that contains a password for the file along with a link to an allegedly important document.

 

“When the link is clicked, a password-protected ZIP folder that includes another zip file and an IMG file is downloaded. Normally, launching the JS file in Windows would result in a Mark of the Web security warning because it is an Internet-based file. However, the forged signature permits the JS script to function and load the malicious QBot program without triggering any Windows security alerts,” the advisory said.

READ ALSO  NCC, Operators Need Stakeholders' Support for Improved QoS - Industry Advisory Forum

 

Accordingly, NCC-CSIRT advised that users apply updates per vendor instructions.

 

The CSIRT is the telecom sector’s cyber security incidence centre set up by the NCC to focus on incidents in the telecom sector and as they may affect telecom consumers and citizens at large.

 

The CSIRT also works collaboratively with ngCERT, established by the Federal Government to reduce the volume of future computer risk incidents by preparing, protecting, and securing Nigerian cyberspace to forestall attacks, and problems or related events.

 

Share This:

Leave a Reply

Your email address will not be published. Required fields are marked *

*

x

Check Also

ncc New ITR danbatta

TTTR Forum: Danbatta highlights new measures for improve regulations

The Executive Vice Chairman, Nigeria Communications ...

ncc New ITR danbatta

NPC to honour Danbatta with esteemed NPOM Award 

NPC says Danbatta to receive National ...

ncc New ITR danbatta

Over 2000 Youths Benefit from NCC’s Digital Job Creation – Danbatta

NCC says over 2,000 Nigerian youths ...

NCC Disowns Fake LinkedIn Account of Prof. Danbatta

NCC says the Commission wish to ...

5g new ITR ncc regulator 3.5GHz Spectrum social media

N17bn Deficit: NCC faults Publication’s inability to accurately interpret Annual Reports

NCC says it faults an Online ...

%d bloggers like this:
Skip to toolbar