The Nigerian Communications Commission’s Computer Security Incident Response Team has flagged a malware, XENOMORPH, that installs trojan in banking apps on the android platform to steal login details, raid bank accounts, and read personal SMS.
According to the commission, owners of compromised devices must take the extreme measure of doing factory resetting of infected devices.
The NCC-CSIRT, citing Zscaler ThreatLabz, said, “The Todo: Day Manager hijacks your login info from banking apps, and can even read your SMS messages. It installs a banking trojan malware called Xenomorph that allows the app to intercept your two-factor verification codes (typically delivered over text) to raid your logins – and bank account.
“Xenomorph performs overlay attacks by exploiting accessibility permissions in Android, resulting in the overlaying of fraudulent login screens on banking apps aimed at exfiltrating credentials. The Android app makes itself intentionally difficult to delete. You need to search your phone for it immediately and uninstall it.
“It starts with asking users to enable access permission. Once provided, it adds itself as a device admin and prevents users from disabling Device Admin, making it un-installable from the phone.”
The Ogun State Government, on Wednesday, commenced the payment of N10,000 cash award to 100,000…
Senate Chief Whip, Ali Ndume, has said the present percentage of policemen in the country…
Tina Ileogben, a baker, has been killed and her heart allegedly stolen at her residence…
The controversy over the alleged padding of the 2024 appropriation bill has taken another dimension,…
The provost of Osun State College of Health Technology, Ilesa, Dr. L.O. Raheem, is commemorating…
Following the death of its immediate-past Group Chief Executive Officer, Herbert Wigwe, Access Holdings Plc…
This website uses cookies.