News
NCC-CSIRT identifies two cyber attacks via Facebook, charging phones
Nasiru Yusuf
The Nigerian Communications Commission’s Cyber Security Incident Response Team (NCC-CSIRT) has independently identified two cyber vulnerabilities and advised Nigerian telecom consumers on the measures to be taken to get protected from the cyber-attacks.
KANO FOCUS reports that the CSIRT, in its first-ever security advisories less than three months after its creation, has solely identified the two cyber-attacks targeting the consumers and proffer solutions that can help telecom consumers from falling victims to the two cyber vulnerabilities.
This is contained in a statement sent to KANO FOCUS by Director, Public Affairs Dr. Ikechukwu Adinde on Friday.
The statement said the first is described as Juice Jacking, which can gain access into consumers’ devices when charging mobile phones at public charging stations and it applies to all mobile phones.
The other is a Facebook for Android Friend Acceptance Vulnerability, which targets only Android Operating System.
According to CSIRT security Advisory 0001 released on January 26, 2022, with Juice Jacking, attackers have found a new way to gain unauthorized entry into unsuspecting mobile phone users devices when they charge their mobile phones at public charging stations.
Many public spaces, restaurants, malls and even in the public trains do offer complementary services to their customers in a bid to enhance customer services, one of which is providing charging ports or sockets.
However, an attacker can leverage this courtesy to load a payload in the charging station or on the cables they would leave plugged in at the stations.
“Once unsuspecting persons plug their phones at the charging station or the cable left by the attacker, the payload is automatically downloaded on the victims’ phone.
“This payload then gives the attacker remote access to the mobile phone, allowing them to monitor data transmitted as text, or audio using the microphone. The attacker can even watch the victim in real time if the victims’ camera is not covered. The attacker is also given full access to the gallery and also to the phone’s Global Positioning System (GPS) location.
“When an attacker gains access to a user’s Mobile phone, he gets remote access to the User’s phone which leads to breach in Confidentiality, Violation of Data Integrity and bypass of Authentication Mechanisms. Symptoms of attack may include sudden spike in battery consumption, device operating slower than usual, apps taking a long time to load, and when they load they crash frequently and cause abnormal data usage,” the statement said.
It added that the NCC-CSIRT, however, proffered solutions to this attack to include using ‘charging only USB cable’, to avoid Universal Serial Bus (USB) data connection; using one’s AC charging adaptor in public space; and not granting trust to portable devices prompt for USB data connection.
Other preventive measures against Juice Jacking, according to the statement include installing Antivirus and updating them to the latest definitions always; keeping mobile devices up to date with the latest patches; using one’s own power bank; keeping mobile phone off when charging in public places; as well as ensuring use of one’s own charger, if one must charge in public.
On the other hand, the NCC-CSIRT Advisory 0001 of January 27, 2022, warns that Facebook for Android is vulnerable to a permission issue which gives privilege to anyone with physical access to the android device to accept friend requests without unlocking the phone. The products affected include Versions 329.0.0.29.120 of Android OS.
With this, the attacker will be able to add the victim as a friend and collect personal information of the victim, such as Email, Date of Birth, Check-ins, Mobile phone number, Address, Pictures and other information that the victim may have shared, which would only be visible to his/her friends.
However, to be protected from the Facebook-associated vulnerability, NCC-CSIRT in the security advisory recommends to users to disable the feature from their device’s lock screen notification settings.
The NCC-CSIRT was inaugurated in October, 2021 to provide guidance and direction for the constituents in dealing with issues relating to the security of critical infrastructure in their possession, and periodically assess, review and collate the threat landscape, risks, and opportunities affecting the communications sector, in order to provide advice to relevant stakeholders in those regards.
As the telecoms-industry specific intervention, the objective of which aligns with the objective of the National Cybersecurity Policy and Strategy (NCPS) document published by the Office of the National Security Adviser (ONSA), the NCC-CSIRT ensures continuous improvement of processes and communication frameworks to guarantee secure and collaborative exchange of timely information while responding to cyber threats within the sector.
In recent times, NCC-CSIRT has raised series of cyber-vulnerability awareness based on security advisories it receives from the Nigerian Cybersecurity Emergency Response Team (ngCERT), which is the national body for the implementation of the NCPS objective. However, Juice Jacking and Facebook for Android Friend Acceptance Vulnerabilities are the two first-ever cyber vulnerabilities published by the NCC-CSIRT.
Nasiru Yusuf Ibrahim
The management of Bayero University, Kano (BUK) has commenced a preliminary investigation into allegations linking a person reportedly identified as one of its students to acts of online impersonation and financial misconduct circulating on social media.
In a statement issued by the Director of Public Affairs, Lamara Garba, on behalf of the Registrar, the university said it had taken note of the claims being discussed in public commentary and across various online platforms.
The statement noted that BUK maintains strict standards of conduct, discipline, and character for all students throughout the duration of their studies, adding that any behaviour capable of bringing the name and reputation of the institution into disrepute is treated with the utmost seriousness.
According to the university, the alleged actions of an individual student should not be seen as a reflection of the values or character of Bayero University Kano as an institution.
“In view of the allegations, the University has commenced a preliminary inquiry to ascertain the facts surrounding the matter. The appropriate University authorities are reviewing the issue in line with the institution’s established rules and disciplinary procedures governing students’ conduct,” the statement said.
The management also commended the public-spirited efforts of Professor Farooq Kperogi and other individuals who provide financial assistance to students in need, particularly by supporting registration fees and other educational expenses.
The university noted that such acts of generosity continue to play an important role in expanding access to education and supporting deserving students.
BUK assured members of the public that if the allegations are substantiated, appropriate disciplinary measures will be taken in accordance with the university’s regulations and relevant laws.
The institution also urged the public to allow the investigative process to run its course and to refrain from speculation or the spread of unverified information.
Ibrahim Khalil
The Governor of Kano State, Abba Kabir Yusuf, has relieved the State Head of Service, Alhaji Abdullahi Musa, of his appointment with immediate effect.
KANO FOCUS reports that the development was disclosed in a statement issued on Tuesday evening by the Director-General, Media and Publicity, Government House Kano, Sunusi Bature Dawakin Tofa.
According to the statement, the decision forms part of the ongoing efforts of the current administration to reposition the state civil service for greater efficiency, discipline, and improved service delivery across government institutions.
Governor Yusuf expressed appreciation to the outgoing Head of Service for his contributions and dedication to the service of Kano State during his tenure.
“We wish him the best in his future endeavours and pray for his continued success in all aspects of life,” the governor said.
The governor also directed that Hajiya Bilkisu Shehu Maimota, Permanent Secretary, Administration and General Services at the Cabinet Office, should serve as Acting Head of Service pending the appointment of a substantive replacement.
The statement further directed the outgoing Head of Service to hand over the affairs of the office to the acting Head of Service no later than Wednesday, March 11, 2026.
Nasiru Yusuf Ibrahim
A student of Information and Communication Technology (ICT) at Northwest University Kano has appealed to the university management and relevant authorities to urgently repair a faulty elevator at the institution’s city campus, saying the situation has made access to lectures extremely difficult for him and other students with disabilities.
KANO FOCUS reports that the student, Aminu Jaafar Muhammad, popularly known as Alamein, made the appeal in a post shared on social media, where he narrated the challenges he faces attending lectures at the Ado Bayero City Campus, Kofar Nassarawa.
Muhammad, a Level 300 student preparing to enter his final year, said he lives with a physical disability affecting one of his legs. According to him, the Faculty of Computing, where he studies ICT, holds lectures on the sixth to ninth floors of the campus building, while the elevator meant to provide access to the upper floors has remained out of service.
He explained that due to the faulty lift, his colleagues are forced to carry him up the stairs every day in order for him to attend classes.
“Every day my colleagues carry me from the ground floor to at least the sixth floor, which involves climbing more than 100 stairs,” he said, describing the act as a remarkable show of solidarity from fellow students.
Muhammad noted that during his first year at the university he studied at the main campus, where there were fewer stairs. In his second year, he said the elevator occasionally functioned, but when it broke down again his classmates had to assist him several times a week to reach lecture halls upstairs.
He revealed that he had earlier written to the university management requesting that lectures for his faculty be relocated either to the main campus or to lower floors of the building to make access easier. However, he said the letter, submitted over a year ago, has yet to receive a response.
The student also recalled that during a visit by Kano State Governor Abba Kabir Yusuf following a fire incident at the campus last year, a new elevator was reportedly donated to the university. According to him, the facility is yet to become operational.
While expressing appreciation to his classmates for their continued support, Muhammad said he decided to speak out because the situation affects not only him but other persons with disabilities on campus.
“I know my colleagues have never complained, but I understand that it is not easy for them. I believe raising the issue can bring change and benefit many others,” he said.
He appealed to the university management and relevant authorities to either relocate the lecture venues to accessible floors or ensure that the elevator is repaired and functioning properly.
Muhammad also called on members of the public and stakeholders to help amplify his appeal so that it reaches those in a position to address the situation.
He expressed hope that resolving the challenge would allow him and other affected students to focus on their studies without unnecessary physical barriers.
BUK probes student over alleged Facebook fraud
Gov. Yusuf relieves Kano Head of Service of appointment
Disabled student seeks urgent fix for faulty elevator at Northwest University Kano
Resident raises concern over rising lawlessness, poor urban planning in Kano
Kwaru Foundation Provides Free Eye Care to Over 1,100 Residents in Kano
Lami Maccido, first person to appear on screens of NTA Kano, CTV 67, dies at 72
Kwaru Foundation Provides Free Eye Care to Over 1,100 Residents in Kano
K-SAFE commends Kano for timely school census, inclusion of non-formal education data
Kano to distribute 16,906 desks to primary schools in 13 LGAs
