The Nigerian Communications Commission (NCC), has warned of a new malware that can steal online banking and credit card details.
The NCC issued a press release on Friday alerting telecom customers about the ‘FluBot malware that the Nigeria Computer Emergency Response Team, ngCERT, reported was targeting Android devices.
How the “FluBot” malware works
NCC director for public affairs Ikechukwu Adinde stated that “FluBot” impersonates mobile banking apps in order to steal personal and financial information. It may also pretend to be FedEx, DHL or Correos, and/or Chrome application.
The malware is spreading via SMS and can monitor the phone’s incoming messages, initiate calls, read and send text messages, and send the contact list to its control center.
According to The Cable, “The new malware compromises security by copying fake login screens from prominent banks. The moment users enter their login details on these fake pages, their data are harvested and transmitted to malware operators’ control points. From there, the data is exploited to intercept banking-related One Time Passwords and replace the default SMS app of the targeted Android device.” The NCC statement read. <…> It then gains access to the device via SMS and transmits similar messages to any other contacts it may have on the targeted device, enticing them to download the fake app.