The National Information Technology Development Agency’s Computer Emergency Readiness and Response Team has issued an alert regarding a new malware attack named ‘Ov3r_Steale,’ which specifically targets Facebook users.
In an advisory released on Monday, the agency warned that this emerging threat deceives Facebook users through fake job advertisements, leading them to click on malicious links.
Once clicked, the malware gains unauthorized access to users’ sensitive information, potentially for further cyberattacks.
The agency highlighted that the Ov3r_Stealer malware can serve as a vehicle for other malware, including ransomware.
Related News: Cybersecurity Specialist Advocates for Yahoo Boys’ Reorientation into IT Specialists
NITDA further explained that users who click on the deceptive advertisement links are redirected to a malicious Discord URL.
This URL initiates the malware through a PowerShell script, masquerading as a Windows Control Panel file, ultimately resulting in the download of the malware payload from a GitHub repository.
The Ov3r_Stealer malware poses a significant threat by silently extracting various personal and sensitive information, including geolocation, passwords, credit card details, and more.
This data is then transmitted to a Telegram channel, possibly for sale or use in phishing attacks.
To bolster protection against such attacks, NITDA advises Nigerians to keep their apps updated and exercise caution, especially when interacting with advertisement links on social media platforms like Facebook.
Regularly updating antivirus software is also crucial to staying vigilant against evolving cyber threats.
A report from December 2023 revealed a concerning trend, with an average of 411,000 malicious files sent daily, marking a three per cent increase compared to the previous year, underscoring the importance of staying proactive in combating cyber threats.
You can also read: Troops Conduct Raid on Sambisa Forest, Kill Eight Terrorists, Recover Weapons