fbpx
Founder Institute Lagos Founder Institute Lagos Founder Institute Lagos
  • Home
  • About
  • Partners
  • Advertise
  • Contact
  • Signup to receive updates
Innovation | Startups | Funding | Tech Blog in Africa
Advertisement
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain
No Result
View All Result
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain
No Result
View All Result
Innovation | Startups | Funding | Tech Blog in Africa
No Result
View All Result
Home General

‘BadUSB’ Ransomware targets Subscribers, Telcos – NCC

by Wale Oguntokun
2022/01/15 - Updated on 2022/03/28
in General
Ransomware - techbuild
Share on FacebookShare on Twitter

The Nigerian Communications Commission (NCC) has alerted the country’s telecommunications community about the activities of cybercriminals who have perfected a New Year scheme to deliver ransomware to targeted organizational networks.

The new ransomware uncovered by security experts has been categorised, by the Nigerian Computer Emergency Response Team’s (ngCERT) advisory released over the weekend, as high-risk and critical.

According to the ngCERT advisory contained in a statement issued on Saturday, January 15, 2022, Dr. Ikechukwu Adinde, director, Public Affairs at NCC, the criminal group is said to have been mailing out (BadUSB) USB thumb drives to many organisations in the hope that recipients will plug them into their PCs and install the ransomware on their networks.

While businesses are being targeted, criminals could soon begin sending infected USB drives to individuals.

RelatedPosts

Partnership between Banks and Fintechs is the future of Banking in Africa

Infobip partners MNOs to launch Camara-compliant APIs in Brazil

DCSL to launch Innovative Boardroom App, celebrates a Decade of Excellence

Revolutionizing Business Insights: LuckyDodo Unveils AI-Powered Business Intelligence in Nigeria

Describing how the cybercrime group runs the ransomware, the ngCERT advisory says the USB drives contain so-called ‘BadUSB’ attacks.

The BadUSB exploits the USB standards versatility and allows an attacker to reprogram a USB drive to emulate a keyboard to create keystrokes and commands on a computer. It then installs malware prior to the operating system booting, or spoofs a network card to redirect traffic.

Numerous attack tools are also installed in the process that allows for exploitation of personal computers (PCs), lateral movement across a network, and installation of additional malware. The tools were used to deploy multiple ransomware strains, including BlackBatter and REvil.

According to ngCERT, the attack has been seen in the US where the USB drives were sent in the mail through the Postal Service and Parcel Service.

One type contained a message impersonating the US Department of Health and Human Services and claimed to be a COVID-19 warning. Other malicious USBs were sent in the post with a gift card claiming to be from Amazon.

However, ngCERT has offered recommendations that will enable corporate and individual networks to mitigate the impact of this new cyber-attack and be protected from the ransomware.

These recommendations include a call on individuals and organisations not to insert USB drives from unknown sources, even if they’re addressed to you or your organization.

In addition, if the USB drive comes from a company or a person one is not familiar with and trusts, it is recommended that one contacts the source to confirm they actually sent the USB drive.

Finally, ngCERT has advised Information and Communication Technology as well as other Internet users to report any incident of system compromises to ngCERT via [email protected], for technical assistance.


Don’t miss important articles during the week. Subscribe to techbuild.africa weekly digest for updates.

Join @techbuildafrica on Telegram
ShareTweetShareSendShare

Subscribe us

Recent Posts

  • Partnership between Banks and Fintechs is the future of Banking in Africa
  • Infobip partners MNOs to launch Camara-compliant APIs in Brazil
  • DCSL to launch Innovative Boardroom App, celebrates a Decade of Excellence
  • Revolutionizing Business Insights: LuckyDodo Unveils AI-Powered Business Intelligence in Nigeria
  • Unveil your Audio Odyssey with Spotify’s Wrapped Personalized User Experience
  • COP28: NASENI EVC, Halilu to Speak on Homegrown Technologies for Rural Electrification In Dubai
  • Anambra’s ISPs, HEIs Invited to AFRINIC One-Day Training to boost Interconnectivity
  • Sophos Proactively Tackles AI-Powered Threats, Prepares Detections
  • Deimos and Cloudflare join Forces to drive Africa’s Cloud Service Landscape
  • Nairobi-based Climatetech Startup Amini raises $4M Seed Funding Round
Innovation | Startups | Funding | Tech Blog in Africa

© 2013-2021 techbuild.africa. All Rights Reserved.

Navigate Site

  • About
  • Contact
  • WE-Forum
  • Privacy
  • Sitemap
  • Terms
  • Blockchain
  • CleanTech

Follow Us

No Result
View All Result
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain

© 2013-2021 techbuild.africa. All Rights Reserved.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In