The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has issued an advisory for users to install trusted and up-to-date anti-virus software with an internet security component to customise News Feed in Microsoft Edge Browser.

According to the NCC, this is part of the countermeasures to lessen the chances of falling for a malicious attack that has been discovered in the browser.

It made this known via a statement issued and made available to The Star on Tuesday by the NCC Director, Public Affairs, Reuben Muoka.

The NCC-CSIRT further advised users of the browser to practise safe internet browsing habits and refrain from clicking on links they were unsure of in the face of the malicious attack that has been rated as high in probability and potential damage to systems.

It stated that the malicious advertising campaign, unearthed on the Microsoft Edge Browser News Feed, redirects victims to fraudulent tech support websites and that cybercriminals have resorted to posting bizarre, attention-grabbing stories or advertisements on the Edge news feed to entice users to click on them, adding that the malicious advertisements appear legitimate but contain malware and/or other threats.

READ ALSO: NCC urges Zoom users to update software over vulnerability

The NCC-CSIRT noted: “The Microsoft Edge News Feed is the default page that appears when a new tab is opened, and it displays information such as news, advertisements, weather, and traffic updates. Also, the following are the steps that result in being redirected to a bogus tech support page: The user clicks on a story or advertisement, the Edge browser setting is analysed for various metrics.

“If the user is adjudged to be a bot or in a location that is not of interest, the user is redirected to a harmless dummy page that is relevant to the story or advertisement initially clicked on. However, if the user is adjudged a potential victim, then the user is redirected to a tech support scam website for further exploitation.”

“Victims of the tech support website scam could have their Personally Identifiable Information (PII) and other data harvested or they could be with malware.”

It further urged telecom consumers and other stakeholders in the ecosystem to install up-to-date AntiVirus software and be alert to the wiles of cyber criminals in order not to fall victim to cyber scams.

The CSIRT is the telecom sector’s cyber security incidence centre set up by the NCC to focus on incidents in the telecom sector and as they may affect telecom consumers and citizens at large.

The CSIRT also works collaboratively with the Nigeria Computer Emergency Response Team (ngCERT), established by the Federal Government to reduce the volume of future computer risk incidents by preparing, protecting, and securing Nigerian cyberspace to forestall attacks, and problems or related events.

The Star