The National Information Technology Development Agency (NITDA) has expressed concerns over an AI-powered malware targeting Nigerian Organizations following a recent wave of cyberattacks.
According to the NITDA, the new AI malware called DeepLoad is actively targeting Nigerian government agencies, banks, businesses, and individuals.
The agency revealed that the malware is distributed via social engineering techniques. This involves fake website error messages instructing victims to paste malicious commands into their computer.
The command, once pasted, silently installs the DeepLoad malware to harvest stored credentials and sensitive data from installed browsers. Specifically, the malware leverages artificial intelligence capabilities to evade antivirus detection.
“Critically, the malware incorporates a hidden WMI-based persistence mechanism capable of reactivating the infection up to three days after apparent removal,” the NITDA noted.
Additionally, the agency highlighted that a successful infection could provide unauthorized access to bank accounts, mobile money services, and payment cards. It could also result in the theft of saved passwords, documents, and personal information, leading to identity frauds like impersonation.
The NITDA stressed that this malware poses a threat to Government agencies and public institutions, alongside banks and financial institutions. The malware also targets critical infrastructure operators, all sizes of businesses, and individuals.
Consequently, it urged Nigerians to take the following precautions to enhance security and avoid potential exploit.
This includes not pasting commands from websites into their computers or opening application setup files from USB drives. The agency also urged Nigerians to enable two-factor authentication on all important accounts and not save banking passwords on web browsers.
The NITDA also directed organizations to alert their staff, block malicious domains, and report suspected infections within 72 hours.
Nigerian organizations reel from cyberattacks
The NITDA’s advisory follows a series of cyberattacks on multiple Nigerian organizations in the public and private sectors.
While most of the incidents went unreported, several social media reports alleged that the cyberattacks cut across various industries. Some of the organizations allegedly exploited included Sterling Bank, Remita, Corporate Affairs Commission (CAC), Universities, and several MDAs.
Meanwhile, industry players have expressed mixed reactions toward the agency’s latest advisory. Some argued that the advisory’s timing is a little too late. Conversely, others believe that it is better late than never.
About the Author
