News
NCC uncovers Cyber Threats to Windows Platforms, Routers
Nasiru Yusuf
The Computer Security Incidents Response Team (CSIRT) set up by the Nigerian Communications Commission (NCC) for the telecoms sector, has discovered two new separate cyber threats targeting Windows Platforms and a particular kind of routers respectively.
KANO FOCUS reports that the discoveries were made known in two separate advisories released by the cyber-space protection team earlier this week.
The first cyber threat is a ransomeware known as ‘Lokilocker’, which is capable of wiping data from all version of Windows systems or platforms. It causes data loss, and denial of service (DoS), which reduces user’s productivity.
“Lokilocker”, is a relatively new ransomware that has been discovered by security researchers and belonging to the ransomware family. Lokilocker operates by encrypting user files and renders the compromised system useless if the victim does not pay the demanded ransom in time.
To hide the malicious activity, the ransomware displays a fake window update screen, cancel specific processes and services, and completely disables the task manager, windows error reporting, machine firewall and windows defender of the compromised system.
Sadly, it also has in-built processes that prevent data recovery as it deletes backup files, shadow copies, and removes system restore points. It also overwrites the user login note and modifies original equipment manufacturer (OEM) information in the registry of the compromised system.
Thus, the NCC CSIRT states: “To protect against infections by LokiLocker and similar ransomware, the best rule is to always have a backup copy of your data, which should be stored offline,” the advisory stated.
Additionally, according to CSIRT, “all downloads and email attachments should be opened with caution, even if they are from trusted sites or senders. Users should also ensure they attachments are scanned with an up-to-date antimalware solution, before opening.”
The second cyber threat discovered by the NCC CSIRT is a Botnet that targets the Microtik version of Routers. As CSIRT revealed, thousands of routers from Microtik which have been found to be vulnerable are being used to constitute what has been named one of the largest botnets in history
This botnet exploits an already-known vulnerability, which allows unauthenticated remote attackers to read arbitrary files and authenticated remote attackers to write arbitrary files, due to a directory traversal vulnerability in the WinBox interface. The vulnerability which was previously fixed allowed the perpetrators to enslave all the routers and then rent them out as a service.
In accordance with new research published by Avast, a cryptocurrency mining campaign taking advantage of the newly disrupted Glupteba botnet as well as the famed Trickbot malicious software were found to have been disseminated by the very same command-and-control (C2) server. The C2 server functions as botnet-as-a-service, which controls nearly 230,000 vulnerable MicroTik routers. The Botnet, however, has been linked to what is now called the Meris Botnet.
The threat types emanating from the botnet include bypass authentication, data loss, denial of service, remote code execution, sniff password and unauthorized access. These situations result in dangers to victims of this cyber threat including malware distribution, mining cryptocurrency, thereby increasing the use system resources, remote code execution and data theft.
To be protected against this botnet, NCC CISRT asdvised users to update or apply the latest patches to their routers early, set strong router passwords, disable the administration interface of the routers from the public, stay away from illegitimate or cracked software versions of legitimate applications, and use decent antivirus software with in-built web-filtering, and apply the latest patches as soon as they arrive.
SIGNED
Dr. Ikechukwu Adinde
Director, Public Affairs
The 2023 Presidential candidate of the New Nigerian Peoples Party (NNPP), Dr. Rabiu Musa Kwankwaso, has debunked reaching a resolution with any individual on the trending defection rumoured to the ruling party or any other political party.
KANO FOCUS reports that Kwankwaso, who considered the recent statement credited to have suggested a particular position as an imagination of falsehood and fragmentation of political mischief against him.
A statement posted on his official X handle @KwankwasoRM, the ex-Governor insisted he has since refrained from commenting on contemporary political events, and will continue to do so for the time being.
In the said false information that went viral, Kwankwaso was quoted to have revealed a meeting with President Bola Tinubu on multiple occasions, urging him to return to the APC fold.
Responding to a statement purportedly signed by one Ibrahim Rabiu, Sen. Kwankwaso insisted he had never signed or authorised any statement to be issued on his behalf.
“My attention has been drawn to a statement purportedly stating my position on the recurring political realignments. I wish to categorically state that such statements are false, unfounded, and products of political mischief.
“I have refrained from commenting on contemporary political events, and I will continue to do so for the time being.”
” I urge the public to only engage statements that come from my public handles and other official sources”. Kwankwaso RM.”
In a releted development, the author of the purported false statement Ibrahim Rabiu has issued a self counter, denouncing the statement as a work of devil.
“I Ibrahim Rabiu, wish to inform the general public that I was never authorised by Sen. Rabiu Kwankwaso to issue and release a statement on his belhalf”
“I therefore wish to tender a public apology to his person with a promise that such childish act will never be repeated in the future, please find a space in your heart to forgive me, I was misled by fake news and agents of misinformation”
The Emir of Kano, Khalifa Muhammad Sunusi II, commended the Adolescent Girls Initiatives for Learning and Empowerment (AGILE) Project for reenrolling over 30,000 adolescent girls and renovating more than 1,300 schools across the state.
KANO FOCUS reports that the Emir made the commendation while reeiving AGILE State Project Implementation Unit (SIPU) who paid him an advocacy visit recently.
Khalifa Muhammadu Sanusi ll
He emphasized the Kano Emirate Council’s commitment to advocating for education and pledged continued support to ensure the enrollment, retention, transition, and completion of girls’ education in Kano.
The Emir also emphasized the importance of collaboration and synergy in implementing policies and programs that foster the development of the state and the nation at large.
AGILE Project Coordinator presenting gift to Emir of Kano
He expressed satisfaction with the AGILE project’s strong monitoring and evaluation framework, particularly in tracking the use of grants and conditional cash transfers.
In his remarks, the Kano State AGILE Coordinator, Malam Mujtapha Aminu said more than 100,000 students are currently enrolled in learning centers across 23 local government areas under the Adolescent Girls’ Initiative for Learning and Empowerment (AGILE) second chance education in Kano.
AGILE PC and Emir of Kano
He said this initiative provides out-of-school adolescent girls an opportunity to complete their secondary education, gain entrepreneurship and life skills.
According to him, the second chance education students undergo literacy, numeracy, and entrepreneurship training across 5,000 learning centers.
Athletes who participated in AGILE WEEK Games
He further explained that after nine months of instruction, the students sit for examinations and are awarded certificates equivalent to the Junior Secondary School Certificate.
“Those who enroll in the advanced literacy program also have the opportunity to sit for national examinations such as NECO and WAEC,” he added.
He said they visited the Emir’andalace to seek blessings and advocate for support to achieve their goals.
AGILE Communications Officer and games officials
The AGILE Project is a World Bank-assisted initiative implemented through Federal and State Ministries of Education, aimed at improving secondary education opportunities for adolescent girls in Nigeria.
The gale of defection from opposition political parties intensifies as two members of the opposition New Nigeria Peoples Party (NNPP), Abdullahi Sani Rogo and Kabiru Alhassan Rurum, have defected to the ruling All Progressives Congress (APC).
KANO FOCUS reports that both lawmakers represent Rano/Bunkure/Kibiya and Karaye/Rogo federal constituency of Kano State.
Both lawmakers announced their defection at plenary presided over by Speaker Abbas Tajudeen.
On hand to witness the defection on the floor of the House was the national chairman of the APC, Dr. Abdullahi Umar Ganduje, accompanied by some members of the national working committee of the party.
However, the Minority Whip, Isa Ali JC, faulted the defection of the lawmakers on the basis that it was against constitutional provisions.
As of Thursday, no fewer than 30 members of opposition political parties have dumped their parties to join the APC.
Kwankwaso denies taking position on rumoured defection to APC
Emir Sanusi commends AGILE for renovating over 1,300 schools in Kano
Rurum, Rogo finally dump NNPP for APC
Power Shift in Kano: Ganduje Family Bows to Emir Sanusi as Nephew Gets Turbaned
Kano legislator, Masu dumps NNPP for APC
AGILE partners ICEADA in promoting girls education in 6 Kano LGAs
2025 Hajj:Kano Pilgrims Board Deploys 300-Man Team, Unveils Seven Key Committees
BUK Achieves 100% Success in 2024 NUC Accreditation: 53 Programmes Fully Approved
Kano signs N12. 7bn for construction of Tofa-Karaye road
