The National Information Technology Development Agency (NITDA) has issued a warning to Nigerians about a sophisticated banking malware called Grandoreiro that is targeting users worldwide through complex phishing schemes.
“Cyber threats like Grandoreiro are evolving, and users need to stay vigilant and adopt robust security practices to protect their information,” the agency warned through its Computer Emergency Readiness and Response Team. The malware employs “advanced techniques, including screen overlay attacks and remote device control, to steal sensitive information such as banking credentials and personal data.”
According to NITDA, the malware primarily spreads through phishing emails and fraudulent websites that trick victims into downloading malicious software disguised as legitimate updates or documents. Once installed, the malware can bypass security protections, potentially leading to significant financial losses and identity theft.
The agency recommends security measures, emphasizing the importance of caution in digital interactions. This includes avoiding links and attachments from unknown emails, downloading software only from trusted sources, and enabling multifactor authentication for online banking and financial accounts.
