fbpx
Founder Institute Lagos Founder Institute Lagos Founder Institute Lagos
  • Home
  • About
  • Partners
  • Advertise
  • Contact
  • Signup to receive updates
Innovation | Startups | Funding | Tech Blog in Africa
Advertisement
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain
No Result
View All Result
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain
No Result
View All Result
Innovation | Startups | Funding | Tech Blog in Africa
No Result
View All Result
Home General

Yanluowang Ransomware: NCC-CSIRT advises Stronger Security Measures

by Wale Oguntokun
2022/08/13 - Updated on 2022/08/15
in General
CSIRT - techbuild
Share on FacebookShare on Twitter
Tweet
Share
Share

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has urged organizations to adopt stronger cybersecurity measures like ensuring their employees use strong, unique passwords for every account and enabling multi-factor authentication (2FA) wherever it is supported to prevent ransomware attacks. It also advised organizations to ensure regular systems backup.

The NCC-CSIRT’s warning contained in its advisory of August 12, 2022, came after the Yanluowang threat actors gained access to Cisco’s network using an employee’s stolen credentials after hijacking the employee’s personal Google account containing credentials synchronized from their browser.

Ransomware is a malware designed to deny a user or organization access to files on their computer until they pay the attackers.

Cisco reported the security incident on its corporate network but said it did not identify any impact on its business although the threat actors had published a list of files from this security incident on the dark web on August 10.

RelatedPosts

Wikimedia Anambra Network sets to Mark a Year of Achievement and Awareness Campaign

IXPN, Medallion DC meet Stakeholders, discuss Internet Peering and Interconnectivity

Dr Krish crowns Technology Person of the Year at Tech Innovation Awards 2023

Nigeria Calls for Open, Secure Internet

NCC-CSIRT estimated potential damage from the incident to be critical while predicting that successful exploitation of the ransomware will result in ransomware deployment to compromise computer systems, sensitive products and customers’ data theft and exposure, as well as huge financial loss to organizations by incurring significant indirect costs and could also mar their reputations.

The team said, “The first step to preventing ransomware attacks is to ensure that employees are using strong, unique passwords for every account and enabling multi-factor authentication (2FA) wherever it’s supported.”

It further disclosed that “In response to the attack, Cisco has immediately implemented a company-wide password reset. Users of Cisco products should ensure a successful password reset.

“As a precaution, the company has also created two Clam AntiVirus signatures (Win.Exploit.Kolobko-9950675-0 and Win.Backdoor.Kolobko-9950676-0) to disinfect any potentially compromised assets.

Clam AntiVirus Signatures (or ClamAV) is a multi-platform antimalware toolkit that can detect a wide range of malware and viruses.

“User education is critical in thwarting this type of attacks or any similar attacks, including ensuring that employees are aware of the legitimate channels through which support personnel will contact users, so that employees can identify fraudulent attempts to obtain sensitive information. “Organizations should ensure regular systems backup,” the advisory urged.

The Computer Security Incident Response Team (CSIRT) is the telecom sector’s cyber security incidence centre set up by the NCC to focus on incidents in the telecom sector and as they may affect telecom consumers and citizens at large.

The CSIRT also work collaboratively with the Nigeria Computer Emergency Response Team (ngCERT), established by the Federal Government to reduce the volume of future computer risks incidents by preparing, protecting and securing the Nigerian cyberspace to forestall attacks, problems or related events.


Don’t miss important articles during the week. Subscribe to techbuild.africa weekly digest for updates

Join @techbuildafrica on Telegram
Tweet
Share
Share
ShareTweetShareSendShare

Subscribe us

Recent Posts

  • Wikimedia Anambra Network sets to Mark a Year of Achievement and Awareness Campaign
  • IXPN, Medallion DC meet Stakeholders, discuss Internet Peering and Interconnectivity
  • Dr Krish crowns Technology Person of the Year at Tech Innovation Awards 2023
  • Nigeria Calls for Open, Secure Internet
  • Appraising OPPO’s Unwavering Commitment to Quality, Trustworthiness, Innovation, and Premium Excellence
  • Modernising Customer Communication is key to Improving Customer Experience
  • Stakeholders join Forces to support the Nigeria Innovation Summit 2023
  • THRIVE Studio Agrifood Tech Program closes Soon (Sep 30)
  • Why Debt Financing is Important for the African Business Market
  • CCM’s Paradigm Shift: From Document Automation to Intelligent Solutions
Innovation | Startups | Funding | Tech Blog in Africa

© 2013-2021 techbuild.africa. All Rights Reserved.

Navigate Site

  • About
  • Contact
  • WE-Forum
  • Privacy
  • Sitemap
  • Terms
  • Blockchain
  • CleanTech

Follow Us

No Result
View All Result
  • Home
  • Startups
  • Hubs
  • Funding
  • WomenTech
  • CleanTech
  • Blockchain

© 2013-2021 techbuild.africa. All Rights Reserved.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In