The National Information Technology Development Agency (NITDA) has warned Nigerians about a new global malware called Grandoreiro, which uses sophisticated phishing tactics to target banking credentials and personal information.
In an advisory issued on Monday by its Computer Emergency Readiness and Response Team, NITDA described the malware as a significant risk due to its advanced features, including screen overlays and remote device control.
The agency explained that Grandoreiro is primarily spread through phishing emails and fake websites designed to trick users into downloading malicious software disguised as legitimate updates or documents. Once installed, the malware bypasses security controls, giving attackers unauthorised access to victims’ devices.
NITDA cautioned that the malware could result in financial losses and identity theft. To reduce the risk, it urged users to adopt robust security measures such as: avoiding links and attachments from unknown emails, downloading software only from trusted sources, and enabling multifactor authentication to secure online banking and financial accounts.
Others include: keeping antivirus software updated, avoiding public Wi-Fi for financial transactions, and regularly monitoring bank accounts for unauthorised activities.
“Cyber threats like Grandoreiro are evolving, and users need to remain vigilant and implement strong security practices to protect their information,” the agency advised.
