Newsspecng

NCC-CSIRT warns of latest Phishing attack

Related Posts

Nigerians have been warned about a new cyber attack. 

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) issued the warning at the weekend.

It warned that a new Phishing, Attacks Exploit Windows Zero-Day Vulnerability. 

The phishing the Commission said can load a malicious QBot malware on the compromised device without triggering any Windows security alerts.

In its advisory, NCC-CSIRT indicated that the vulnerability, which is present in all versions of Windows-based products, presents as Phishing Attacks and Malware threats.

It stated : “To take advantage of the Windows Mark of the Web zero-day vulnerability, threat actors have switched to a new phishing strategy that involves propagating JS files (plain text files that include JavaScript code) signed with forged signatures.

“The newest phishing attempt begins with an email that contains a password for the file along with a link to an allegedly important document.

“When the link is clicked, a password-protected ZIP folder that includes another zip file and an IMG file is downloaded.

“Normally, launching the JS file in Windows would result in a Mark of the Web security warning because it is an Internet-based file. However, the forged signature permits the JS script to function and load the malicious QBot program without triggering any Windows security alerts,” the advisory said.

Accordingly, NCC-CSIRT advised that users apply updates per vendor instructions.

 

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts

Thanks for subscribing to our newsletter