News
Cybercrime: NCC reports new malware AbstractEmu, attacking Android devices
Nasiru Yusuf
The Nigerian Communications Commission (NCC) has discovered a new Android malware attacking telecommunication consumers.
KANO FOCUS reports that the malware, named ‘AbstractEmu’, can gain access to smartphones, take complete control of infected smartphones and silently modify device settings while simultaneously taking steps to evade detection.
A statement issued by Director Public Affairs Ikechukwu Adinde said this discovery was announced recently by the Nigerian Computer Emergency Response Team (ngCERT), the national agency established by the Federal Government to manage the risks of cyber threats in the Nigeria, which also coordinates incident response and mitigation strategies to proactively prevent cyber-attacks against Nigeria.
AbstractEmu has been found to be distributed via Google Play Store and third-party stores such as the Amazon Appstore and the Samsung Galaxy Store, as well as other lesser-known marketplaces like Aptoide and APKPure.
The advisory stated that a total of 19 Android applications that posed as utility apps and system tools like password managers, money managers, app launchers, and data saving apps have been reported to contain the rooting functionality of the malware.
The apps are said to have been prominently distributed via third-party stores such as the Amazon Appstore and the Samsung Galaxy Store, as well as other lesser-known marketplaces like Aptoide and APKPure.
The apps include All Passwords, Anti-ads Browser, Data Saver, Lite Launcher, My Phone, Night Light and Phone Plus, among others.
According to the report, rooting malware although rare, is very dangerous. By using the rooting process to gain privileged access to the Android operating system, the threat actor can silently grant itself dangerous permissions or install additional malware – steps that would normally require user interaction. Elevated privileges also give the malware access to other apps’ sensitive data, something not possible under normal circumstances.
The ngCERT advisory also captured the consequences of making their devices susceptible to AbstractEmu attack. Once installed, the attack chain is designed to leverage one of five exploits for older Android security flaws that would allow it to gain root permissions. It also takes over the device, installs additional malware, extracts sensitive data, and transmits to a remote attack-controlled server.
Additionally, the malware can modify the phone settings to give app ability to reset the device password, or lock the device, through device admin; draw over other windows; install other packages; access accessibility services; ignore battery optimisation; monitor notifications; capture screenshots; record device screen; disable Google Play Protect; as well as modify permissions that grant access to contacts, call logs, Short Messaging Service (SMS), Geographic Positioning System (GPS), camera, and microphone.
The ngCERT also asserts in the advisory that, while the malicious apps were removed from Google Play Store, the other app stores are likely distributing them.
Consequently, the NCC wishes to reiterate a two-fold ngCERT advisory in order to mitigate the risks. The two-fold advisory include:
“1. Users should be wary of installing unknown or unusual apps, and look out for different behaviours as they use their phones.
“2. Reset your phone to factory settings when there is suspicion of unusual behaviours in your phone.
“The NCC, in exercise of its mandate and obligation to the consumers, will continue to sensitise and educate telecoms consumers on any cyber threat capable of inflicting low or high-impact harms on their devices, whether discovered through the ngCERT or the telecom sector’s Centre for Computer Security Incident Response managed by the Commission.
It will be recalled that the NCC, in October 2021, alerted telecom consumers of the existence of new, high-risk and extremely-damaging, Android device – targeting Malware called Flubot and outlined steps to prevent the eir devices from being attacked by the virus.
Nasiru Yusuf Ibrahim
The Director General of the Telecommunications Regulatory Board (ART) of the Republic of Cameroon, Philemon Zoo Zame, on Wednesday visited the headquarters of the [Nigerian Communications Commission (NCC) in Abuja for a benchmarking exercise aimed at strengthening regulatory collaboration and knowledge sharing between both countries.
KANO FOCUS reports that during the visit, the Cameroonian telecom regulator met with the Executive Vice Chairman and Chief Executive Officer of NCC, Aminu Maida.
A statement issued by Ayiabari A. Kigbara, Manager, Media Relations, Public Affairs Department of the NCC, said the engagement focused on exchanging ideas and best practices in telecommunications regulation, with emphasis on enhancing efficiency and development within the sector.
Nasiru Yusuf Ibrahim
Dangote Petroleum Refinery and Petrochemicals Limited has announced that its ex-depot price of Premium Motor Spirit (PMS) remains unchanged, reaffirming its commitment to stability in Nigeria’s domestic energy market.
In a statement issued by Esan Sunday, Head of Media Relations, Branding and Communication, the company said sustaining the current price reflects its efforts to cushion the broader economy against external shocks. It noted that by absorbing prevailing cost pressures, the refinery is helping to moderate inflationary risks, promote energy affordability, and ensure uninterrupted fuel supply amid ongoing global uncertainties.
The company reiterated its dedication to the steady supply of high-quality petroleum products to the Nigerian market, while aligning with national objectives of price stability and energy security.
It also urged the public to rely solely on official communications from the refinery for accurate and up-to-date information regarding its operations and pricing.
Nasiru Yusuf Ibrahim
President Bola Ahmed Tinubu has congratulated Alhaji Murtala Sule Garo on his emergence as the Deputy Governor of Kano State following his swearing-in on Tuesday.
KANO FOCUS reports that Garo was sworn in by Governor Abba Kabir Yusuf after being nominated to fill the vacancy created by the resignation of former deputy governor, Comrade Aminu Abdulsalam.
In a statement issued by his Special Adviser on Information and Strategy, Bayo Onanuga, the President described Garo’s appointment as a positive step toward strengthening unity within the All Progressives Congress (APC) in Kano State.
The President noted that the 48-year-old politician has held several public offices, including Chairman of Kabo Local Government Area and Commissioner for Local Government and Chieftaincy Affairs during the administration of former governor Abdullahi Umar Ganduje. He also served as the APC governorship running mate in the 2023 general elections.
Tinubu commended Governor Yusuf for the appointment, urging political stakeholders in the state to rally behind the administration to ensure stability and progress.
He also called on the new deputy governor to work closely with the governor in delivering effective leadership and accelerating development in Kano State.
The President wished Garo success in his new role.
Cameroon telecom regulator visits NCC for benchmarking exercise
Dangote Refinery maintains ex-depot price of PMS
Tinubu congratulates Garo on appointment as Kano deputy governor
Ganduje acknowledges Sanusi II as Emir of Kano, 6 years after dethroning him
Gov. Yusuf to swear in Murtala Garo as Kano deputy governor Tuesday
Kano SUBEB disowns fake teachers’ recruitment results
Sarkin Fulanin Jaidinawa Abubakar Gwadabe Buhari dies, funeral set for Wednesday
Kano Judicial Commission sanctions Shariah Court Judges, other staff over misconduct
Tinubu nominates Kano’s Rabiu Umar as new NMDPRA chief
