The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has warned Nigerians against taking part in the ‘Invisible Challenge’ on short-form video hosting service, TikTok, revealing that it exposes devices to information-stealing malware.
The NCC, in an advisory issued on Tuesday by its spokesperson, Reuben Muoka, said threat actors have taken advantage of the Invisible Challenge to disseminate an information-stealing malware known as the WASP (or W4SP) stealer.
The WASP stealer, which is high in probability with critical damage potential, is a persistent malware hosted on discord that its developer claim is undetectable.
The NCC stated: “The Invisible Challenge involves wrapping a somewhat transparent body contouring filter around a presumed naked individual. Attackers are uploading videos to TikTok with a link to software that they claim can reverse the filter’s effects.
READ ALSO: Meta threatens to remove news from Facebook
“Those who click on the link and attempt to download the software, known as ‘unfilter’, are infected with the WASP stealer. Suspended accounts had amassed over a million views after initially posting the videos with a link. Following the link leads to the “Space Unfilter” Discord server, which had 32,000 members at its peak but has since been removed by its creators.
“Successful installation will allow the malware to harvest keystrokes, screenshots, network activity, and other information from devices where it is installed. It may also covertly monitor user behaviour and harvest Personally Identifiable Information (PII), including names and passwords, keystrokes from emails, chat programs, websites visited, and financial activity. This malware may be capable of covertly collecting screenshots, video recordings, or the ability to activate any connected camera or microphone.”
It noted that some ways to forestall such an attack include “avoiding clicking on suspicious links, using anti-malware software on your devices, checking app tray and removing any apps that you do not remember installing or that are dormant and embracing healthy password hygiene practices such as using a password manager.”
The Bauchi State Civil Service Commission (BSCSC) has suspended six civil servants over alleged gross…
By RABIU USMAN It was President Bola Tinubu that declared that in the first half…
The Supreme Court on Friday, November 15, 2024 dismissed the suit by 16 states against…
The Nigerian Governors’ Wives Forum (NGWF) has called on Governors and State Legislators to implement…
Nigeria’s inflation rate increased to 33.88% in October 2024, up from 32.7% recorded in September,…
The National Judicial Council (NJC) has sanctioned five judicial officers for various acts of misconduct.…
This website uses cookies.