By using this site, you agree to the Privacy Policy and Terms & Conditions.
Accept
Okay.ngOkay.ngOkay.ng
Font ResizerAa
  • News
    • Politics
  • Entertainment
  • Business & Economy
  • Sport
  • Tech
Reading: NCC uncovers cyber threats to Windows platforms, routers
Share
Font ResizerAa
Okay.ngOkay.ng
  • News
  • Entertainment
  • Business & Economy
  • Sport
  • Tech
Search
  • News
    • Politics
  • Entertainment
  • Business & Economy
  • Sport
  • Tech
Follow US
  • About Okay.ng
  • Advertising on Okay.ng
  • Contact Okay.ng
  • Careers
  • Meet the Team behind Okay.ng
  • Ownership and Funding of Okay.ng
  • Editorial Principles at Okay.ng
© OKN MEDIA PUBLISHING 2022 - All rights reserved
Tech

NCC uncovers cyber threats to Windows platforms, routers

Yusuf Abubakar
By Yusuf Abubakar
Published: March 31, 2022
Share
4 Min Read
NCC
SHARE

The Computer Security Incidents Response Team (CSIRT) set up by the Nigerian Communications Commission (NCC) for the telecoms sector, has discovered two new separate cyber threats targeting Windows Platforms and a particular kind of routers respectively.

The discoveries were made known in two separate advisories released by the cyber-space protection team earlier this week.

The first cyber threat is a ransomeware known as ‘Lokilocker’, which is capable of wiping data from all version of Windows systems or platforms. It causes data loss, and denial of service (DoS), which reduces user’s productivity.

“Lokilocker”, is a relatively new ransomware that has been discovered by security researchers and belonging to the ransomware family. Lokilocker operates by encrypting user files and renders the compromised system useless if the victim does not pay the demanded ransom in time.

- Advertisement -

To hide the malicious activity, the ransomware displays a fake window update screen, cancel specific processes and services, and completely disables the task manager, windows error reporting, machine firewall and windows defender of the compromised system.

Sadly, it also has in-built processes that prevent data recovery as it deletes backup files, shadow copies, and removes system restore points. It also overwrites the user login note and modifies original equipment manufacturer (OEM) information in the registry of the compromised system.

Thus, the NCC CSIRT states: “To protect against infections by LokiLocker and similar ransomware, the best rule is to always have a backup copy of your data, which should be stored offline,” the advisory stated.

Additionally, according to CSIRT, “all downloads and email attachments should be opened with caution, even if they are from trusted sites or senders. Users should also ensure they attachments are scanned with an up-to-date antimalware solution, before opening.”

- Advertisement -

The second cyber threat discovered by the NCC CSIRT is a Botnet that targets the Microtik version of Routers. As CSIRT revealed, thousands of routers from Microtik which have been found to be vulnerable are being used to constitute what has been named one of the largest botnets in history

This botnet exploits an already-known vulnerability, which allows unauthenticated remote attackers to read arbitrary files and authenticated remote attackers to write arbitrary files, due to a directory traversal vulnerability in the WinBox interface. The vulnerability which was previously fixed allowed the perpetrators to enslave all the routers and then rent them out as a service.

In accordance with new research published by Avast, a cryptocurrency mining campaign taking advantage of the newly disrupted Glupteba botnet as well as the famed Trickbot malicious software were found to have been disseminated by the very same command-and-control (C2) server. The C2 server functions as botnet-as-a-service, which controls nearly 230,000 vulnerable MicroTik routers. The Botnet, however, has been linked to what is now called the Meris Botnet.

The threat types emanating from the botnet include bypass authentication, data loss, denial of service, remote code execution, sniff password and unauthorized access. These situations result in dangers to victims of this cyber threat including malware distribution, mining cryptocurrency, thereby increasing the use system resources, remote code execution and data theft.

To be protected against this botnet, NCC CISRT advised users to update or apply the latest patches to their routers early, set strong router passwords, disable the administration interface of the routers from the public, stay away from illegitimate or cracked software versions of legitimate applications, and use decent antivirus software with in-built web-filtering, and apply the latest patches as soon as they arrive.

Stay Updated on the Go with Our Latest News—Join Our WhatsApp Channel Now!
TAGGED:NCCWindows
Share This Article
Facebook Whatsapp Whatsapp Telegram Email Copy Link Print
ByYusuf Abubakar
Follow:
Yusuf Abubakar, Born in the mid-’90s, a recipient of various meritorious awards, a passionate entrepreneur, an advocate of good governance, a toast master and a patriotic Nigerian.
Previous Article Complete NIN-SIM linkage ‘without delay’, FG urges Nigerians
Next Article Sultan Abubakar Saad Ramadan 2022: Watch out for new moon, Sultan directs Nigerian Muslims

Connect with Okay on Social

FacebookLike
XFollow
InstagramFollow
TelegramFollow

Dollar/Naira Rates

Dollar to Naira Exchange Rate

Okay.ng Logo
Buy Rate ₦1,605.00
Sell Rate ₦1,620.00

Last updated: 4 days ago (June 3, 2025 2:33 pm)

Displayed rates are for informational purposes only and are subject to change.

USD/NGN Converter

- Advertisement -
- Advertisement -
Ad imageAd image
- Advertisement -
Ad imageAd image

Recent Posts

Super Eagles Rally to Draw Against Russia in International Friendly
Sport
Manchester United Raises Annual Core Profit Forecast to Between £180m and £190m After Europa League Boost
Sport
Ange Postecoglou
Tottenham Hotspur Part Ways with Ange Postecoglou Despite Europa League Glory
Sport
Dangote Names Main Refinery Access Road “Bola Ahmed Tinubu Road” in Honor of President
News
L-R: Ify Okoye, Digital Creator; Linda Ejiofor-Suleiman, Actress; Stella Erebor, Head Internal Audit, Nigerian Communications Commission; Emanuella Samuel, Comedienne/Actress, Sylvia Musalagani, Safety Policy Manager, Africa, Middle East & Turkey (AMET), Meta, and Nicole Chikwe, founder of The Mummy Summit, during the launch of Instagram teen accounts in Lagos on Wednesday, June 4, 2025
Meta Launches Teen Accounts on Instagram in Nigeria to Enhance Online Safety for Young Users
Tech
- Advertisement -
Ad imageAd image

You May Also Like

News

President Tinubu and Top Officials Attend Eid-el-Kabir Prayers in Lagos, Emphasize Peace and Progress

Oluwadara Akingbohungbe
Oluwadara Akingbohungbe
June 6, 2025
International

Elon Musk’s Net Worth Plummets $34 Billion Amid Explosive Feud with Donald Trump

Oluwadara Akingbohungbe
Oluwadara Akingbohungbe
June 6, 2025
PoliticsTop stories

BREAKING: Akwa Ibom Governor Pastor Umo Eno Defects from PDP to APC in Strategic Political Shift

Oluwadara Akingbohungbe
Oluwadara Akingbohungbe
June 6, 2025
Okay.ngOkay.ng
Follow US
© OKN MEDIA PUBLISHING 2025 - All rights reserved
  • About Okay.ng
  • Advertising on Okay.ng
  • Contact Okay.ng
  • Careers
  • Meet the Team behind Okay.ng
  • Ownership and Funding of Okay.ng
  • Editorial Principles at Okay.ng
adbanner
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?