fbpx
Founder Institute Lagos Founder Institute Lagos Founder Institute Lagos
  • Home
  • About
  • Partners
  • Advertise
  • Contact
  • Signup to receive updates
Innovation | Startups | Funding | Tech Blog in Africa
Advertisement
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain
No Result
View All Result
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain
No Result
View All Result
Innovation | Startups | Funding | Tech Blog in Africa
No Result
View All Result
Home General

SA, Kenya and Nigeria still experience Massive increase of targeted Malware Schemes

The reason for such a change was the introduction and popularisation of new cybercrime models in the region, with cybercrime tools becoming more targeted

by TechBuild.Africa
2021/11/25
in General
Malware - techbuild

Credits: The Cybersecurity Man

Share on FacebookShare on Twitter

According to Kaspersky’s latest research on the threat landscape trends, South Africa, Kenya and Nigeria are facing a dramatic change in the threat landscape.

While regular, self-propagating malware is decreasing dramatically, as it is no longer effective and cannot fly under security radars, the region will see the growth of new cybercrime models in the upcoming year.

While comparing the overall number of mass cyberattacks in 2021, security researchers at Kaspersky noticed a 7,5% decrease in Nigeria, a 12% decrease in South Africa and an unprecedented 28,6% decrease in Kenya.

182554

RelatedPosts

YouTube launches ‘The Voices of Africa’ to celebrate Africa’s diverse Cultural Heritage

ISN Hubs Welcomes Oge Nnaife as New Executive Director

NCC Boss tasks Nokia to invest in Nigeria’s ICT R&D

Seun Dania Lauds Efforts of Nigeria’s Police Force, Reiterates Support for Patricia Technologies

The reason for such a change was the introduction and popularisation of new cybercrime models in the region, with cybercrime tools becoming more targeted along with a long-running trend where malware creators rely not on the technical advantage of their technologies over security protection, but on the human factor.

This has stimulated the evolution of phishing schemes in 2021. In particular, the region saw a wave of ‘Anomalous’ spyware attacks.

The usual phishing spyware attack begins when attackers infect a victim by sending them an e-mail with a malicious attachment or a link to a compromised website and ends when the spyware is downloaded and activated on the victim’s device.

Having gathered all necessary data, the operator usually ends the operation by attempting to leave the infected system unnoticed.

In anomalous attacks, however, the victim’s device becomes not only a source of data but also a tool for spyware distribution.

Having access to the victim’s email server, the malware operators use it to send phishing emails from a legitimate company’s email address.

In this case, anomalous spyware attacks an organization’s server for collecting stolen data from another organization and sending further phishing emails.

“The Anomalous spyware attacks have a huge potential for growth in South Africa, Kenya and Nigeria in 2022, because unlike regular spyware the entry-level for attackers who wish to employ this tactic is significantly lower – since instead of paying for their own infrastructure, they abuse and employ the victims’ resources.

We see that cheaper attack methods have always been on the rise in the region and cybercriminals quickly pick up on new tactics. Kaspersky, therefore, suggests that in the nearest future, these countries should be prepared for such attacks”, says Maria Garnaeva, Senior Security Researcher at Kaspersky ICS CERT team.

However, the mass-scale attacks are not disappearing, but rather transforming. Garnaeva also reports on a mass-scale and pervasive fake installers campaigns, where fake pirated software sites serve up malware as a service.

The scheme is usually the following: a user searches for a free version of an extremely popular legitimate spyware.

The cybercriminals are offering them a fake installer using ‘black SEO technic’ – the abuse of the legitimate search engines, resulting in the offering of the fraudulent websites first.

As a result of software installer execution, a few dozen malware samples are downloaded and installed with the goal of turning the infected devices into a part of the Glupteba botnet.

The whole fake installers campaign and botnet has been extremely active in South Africa in 2021 and continues to evolve, yet it is scarcely researched.

“While the Glupteba botnet seems to be a threat for consumers, we are still researching it and keeping an eye on its behaviour, since some distributed malware resembles APT-related samples like Lazarus APT groups and were recently used in the largest DDoS attack in Russia.

It is too early to say it with a high level of confidence, but these factors may suggest that we are now entering the era where APT actors start to use existing malware distribution platforms which makes attribution of such attacks harder and opens a new vector similar to supply chain attacks,” adds Garnaeva.

In order to stay protected from such new cybercrime models and threats, Kaspersky recommends the following:

  • Pay close attention to and don’t open any suspicious files or attachments received from unknown sources
  • Do not download and install applications from untrusted sources
  • Do not click on any links received from unknown sources and suspicious online advertisements
  • Create strong passwords and don’t forget to change them regularly
  • Always install updates. Some of them may contain critical security issues fixes
  • Ignore messages asking to disable security systems for office software or antivirus software
  • Use a robust security solution appropriate to your system type and devices, such as Kaspersky Internet Security or Kaspersky Security Cloud.

Don’t miss important articles during the week. Subscribe to techbuild weekly digest for updates

Join @techbuildafrica on Telegram
ShareTweetShareSendShare

Subscribe us

Recent Posts

  • YouTube launches ‘The Voices of Africa’ to celebrate Africa’s diverse Cultural Heritage
  • ISN Hubs Welcomes Oge Nnaife as New Executive Director
  • Grey unveils New Brand Identity to drive its Global Expansion
  • NCC Boss tasks Nokia to invest in Nigeria’s ICT R&D
  • Deimos Announces IaaS Platform to transform Business Operations in Africa
  • Innovation Support Network (ISN) Hubs Announces New Chairman, Board Members
  • Seun Dania Lauds Efforts of Nigeria’s Police Force, Reiterates Support for Patricia Technologies
  • Apply for SHRMLabs’ BWCC Startup Track Competition ($50K)
  • Anambra Govt Initiates CBT Tests to Recruit 3000 Teachers
  • Charting the Course of AI in Nigeria’s Business Terrain
Innovation | Startups | Funding | Tech Blog in Africa

© 2013-2021 techbuild.africa. All Rights Reserved.

Navigate Site

  • About
  • Contact
  • WE-Forum
  • Privacy
  • Sitemap
  • Terms
  • Blockchain
  • CleanTech

Follow Us

No Result
View All Result
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain

© 2013-2021 techbuild.africa. All Rights Reserved.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In