The National Information Technology Development Agency (NITDA) has raised concerns over a dangerous new malware known as ‘OV3R_Stealer’, intended to compromise the security of Facebook users.
The agency’s Head of Corporate Affairs and External Relations, Hadiza Umar, issued the warning on Monday, urging Nigerians to remain vigilant against this emerging cyber threat.
“A new threat, known as Ov3R_Stealer malware, has emerged, targeting users on Facebook, spreading through deceptive job advertisement and fake accounts.
“Users become infected by clicking on these malicious advertisement links.
“The malware employs various execution methods to extract sensitive data from victims,” NITDA spokesperson said.
According to her, the Ov3R_Stealer malware can also be used as a dropper for other malware, including ransomware.
Umar said, “When users click on the advertisement, they will be redirected to a malicious discord URL which executes the malware through a PowerShell script.”
Umar said the Powershell masquerades as a Windows Control Panel(CPL) file to download the malware payload from a GitHub repository.
“Ov3r_Stealer poses a significant risk by silently exfiltrating a wide range of personal and sensitive information including geo-location (based on IP), hardware info, passwords, cookies, credit card, among others.
“This data is subsequently transmitted to a telegram channel where it is possibly sold or used for phishing attacks.
“There is a need to ensure that users’ software is always updated and avoid clicking on advertisement links, especially on social media platforms.
“Ensure your system antivirus is updated regularly and stays current on new and evolving threats,” she said.
Let Zebra News help your business/brand reach a wider audience. Advertise with us today! Contact Our Marketing Team; Tel: 08062622328, 07083662767. Email: zebranewsng@gmail.com
