ngCERT | Home

Wednesday, Sep 27, 2023
Abuja, NG 19°C
Contact us
About us
FAQ

InfoSec NEWS FEEDS

ngCERT Advisory 19-years-old WinRAR vulnerability leads to over 100 malware exploits

Advisory

Windows BlueKeep Vulnerability

Vulnerability

ECOWAS HACKATHON 2023

Event

The Director of Communications (DOC) and the team from ngCERT Attends the National Cybersecurity Capacity review meeting for Nigeria

Article

iPhone Users Urged to Update to Patch 2 Zero-Days

Feed

WELCOME TO NIGERIA COMPUTER EMERGENCY RESPONSE TEAM (ngCERT)

The Nigeria Computer Emergency Response Team has the mission to achieve a safe, secure and resilient cyberspace in Nigeria that provides opportunities for national prosperity. ngCERT is
established to prepare, protect, and secure the Nigerian cyberspace in anticipation of
attacks, problems, or events. ngCERT is saddled with the responsibility of
reducing the volume of future incidents.

PREPARATION

Incident Response Plan

IDENTIFICATION

What is the Incident?

CONTAINMENT

Contain the Issue immediately

INVESTIGATION

Determine the cause of the incident

ERADICATION

Get Rid of the issue

RECOVERY

Restore service as fast as possible

InfoSec Feeds

Crest and IASME to deliver upcoming NCSC Cyber Exercise programme

Feeds
September 26, 2023

Cover-ups still the norm in the wake of a cyber incident

September 26, 2023

Apple fixes three vulnerabilities found by spyware researchers

September 25, 2023

Security Think Tank: Three ways to identify the best encryption use cases

September 25, 2023

Fear is the mind-killer: Governance key to safety in the cyber dunes

Feeds
September 22, 2023

Cyber experts set out plan to secure crucial 2024 US election

September 22, 2023

UK-US data bridge to open to traffic on 12 October

September 22, 2023

Annual Security Serious Awards nominations announced

September 22, 2023

governance, risk and compliance (GRC)

Feeds
September 21, 2023

Poor digital experience a blocker for cyber resilience

September 21, 2023

‘Top’ ransomware gangs favour smaller businesses

September 21, 2023

Multi-agency pilot aims to help innovators navigate regulatory landscape

September 20, 2023

Organisations failing to proactively address insider cyber risk

Feeds
September 20, 2023

Parliament passes sweeping Online Safety Bill but tech companies still concerned over encryption

September 20, 2023

Nominet and European counterparts link up on intelligence sharing

September 19, 2023

September 19, 2023

38TB Microsoft data leak highlights risks of oversharing

Feeds
September 19, 2023

Okta confirms link to cyber attacks on Las Vegas casinos

September 19, 2023

New revelations from the Snowden archive surface

September 19, 2023

Braverman puts pressure on Meta to pause end-to-end encryption plans

September 19, 2023

ransomware as a service (RaaS)

Feeds
July 7, 2023

SolarWinds hack explained: Everything you need to know

June 27, 2023

Use IoT hardening to secure vulnerable connected devices

June 16, 2023

How to conduct a smart contract audit and why it's needed

May 25, 2023

claims-based identity

Feeds
May 9, 2023

Certified Cloud Security Professional (CCSP)

May 9, 2023

DC Health Link breach caused by misconfigured server

April 20, 2023

How to defend against TCP port 445 and other SMB exploits

April 19, 2023

11 cybersecurity tips for business travelers

Feeds
April 17, 2023

quantum supremacy

March 15, 2023

Top 10 types of information security threats for IT teams

February 7, 2023

messaging security

February 7, 2023

How to fix the top 5 cybersecurity vulnerabilities

Feeds
February 6, 2023

How to fix the top 5 cybersecurity vulnerabilities

February 6, 2023

What to keep in mind when securing virtual environments

February 6, 2023

January 31, 2023

What is cybersecurity?

Feeds
January 11, 2023

December 7, 2022

8 cybersecurity books to read in 2023

October 28, 2022

Student Loan Breach Exposes 2.5M Records

August 31, 2022

Watering Hole Attacks Push ScanBox Keylogger

Feeds
August 30, 2022

Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms

August 29, 2022

Ransomware Attacks are on the Rise

August 26, 2022

Cybercriminals Are Selling Access to Chinese Surveillance Cameras

August 25, 2022

Twitter Whistleblower Complaint: The TL;DR Version

Feeds
August 24, 2022

Firewall Bug Under Active Attack Triggers CISA Warning

August 23, 2022

Fake Reservation Links Prey on Weary Travelers

August 22, 2022

iPhone Users Urged to Update to Patch 2 Zero-Days

August 19, 2022

Google Patches Chrome’s Fifth Zero-Day of the Year

Feeds
August 18, 2022

3 ways to help cybersecurity pros avoid burnout

July 26, 2022

What are the pros and cons of electronic signatures?

July 22, 2022

software bill of materials (SBOM)

July 12, 2022

Do you meet all the modern authentication requirements?

Feeds
June 28, 2022

Learn to work with the Office 365 unified audit log

May 23, 2022

How to train agents on call center fraud detection

December 9, 2021

Use and protect backup against COVID-19-related cybercrime

April 23, 2020

Zoom vulnerability reveals privacy issues for users

Feeds
July 12, 2019

Google changes Chrome extension policy amid security concerns

May 20, 2015

Comparing the top SSL VPN products

April 28, 2015

Locate IP address location: How to confirm the origin of a cyberattack

August 25, 2011

Alerts & Advisories

Malicious Advertising Campaign Distributing Info-Stealer Malware. Cybercriminals are continuously looking for and developing new ways to disseminate malware, with the most recent option being through malicious advertisements. These malicious advertising, or malvertising campaign are used to spread .NET loaders, known as MalVirt, that deploy information-stealing malware unto unsuspecting devices. Malvertising is a relatively recent hacking strategy that embeds harmful malware in digital advertisements. Almost every internet user is vulnerable to infection.

Advisory
September 19, 2023

Criminals Using SIM Swapping Attack to Steal Millions of Dollars from the Public

August 31, 2023

Multiple Critical Vulnerabilities Reported in CODESYS V3 SDK

August 16, 2023

New Method of Deploying Malware on Google Play Store

August 10, 2023

[THREAT ALERT]: PLANNED ATTACKS ON NATION’S CRITICAL INFORMATION INFRASTRUCTURES BY “ANONYMOUS SUDAN” HACKING GROUP AGAINST NIGERIA. Anonymous Sudan on the 1st of August, 2023 announced via their Telegram channel of planned cyber attacks against critical information infrastructures in Nigeria, following Nigeria’s role and involvement in ECOWAS recent directives to the Niger Military in the process of restoring power to the democratically elected government of Niger Republic.

Advisory
August 2, 2023

Advisory On Preventing Web Application Access Control Abuse

August 1, 2023

Advisory on Recent Kenyan Critical Information Infrastructure DDoS Attack

July 28, 2023

Hijacked Microsoft IIS Servers Used to Distribute Malware

July 27, 2023

Android Smartphones Vulnerable to Fingerprint Brute Force Attacks. A new method of bypassing user authentication on smartphones running the Android, HarmonyOS, and iOS operating systems has been discovered. The method has been dubbed 'BrutePrint' by its discoverers, Tencent Labs and Zhejiang University, because it employs brute force attacks to crack modern smartphone authentication mechanisms such as fingerprints to bypass user authentication and take control of the device.

Advisory
July 24, 2023

Watering Hole Attacks

July 23, 2023

Critical Vulnerability Discovered in Popular WordPress Plugin

July 22, 2023

Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerability

July 21, 2023

ngCERT Advisory on Scranos Malware. Scranos is a Trojan horse that steals information from the compromised computer. It may also download potentially malicious files. Scranos cloaks itself as cracked software or apps that pose as legitimate programs, such as ebook readers, video players, drivers, and even security products. Upon execution, a rootkit driver is installed to hide the malware.

Advisory
July 21, 2023

ngCERT Advisory 19-years-old WinRAR vulnerability leads to over 100 malware exploits

July 21, 2023

ngCERT Advisory Microsoft Exchange 2013 and Newer are vulnerable to NTLM relay attacks

July 21, 2023

Vulnerabilities

ESXi Remote Code Execution Vulnerability. Investigation revealed that the vulnerability ESXi versions 6.0, 6.5 and 6.7 running on any platform, and the Horizon cloud desktop-as-a-service (DaaS) platform version 8.x. could be exploited to perform remote code execution.

Vulnerability
July 21, 2023

Windows 10 Task Scheduler Zero-Day Vulnerability

July 21, 2023

Intel Chips Vulnerability

July 21, 2023

Windows BlueKeep Vulnerability

July 21, 2023

Resources

NIGERIA DATA PROTECTION ACT, 2023

READ MORE & DOWNLOAD

An Act to provide a legal framework for the protection of personal information, and ...

Cybercrimes (prohibition, Prevention etc) Act, 2015

READ MORE & DOWNLOAD

The Act provides an effective, unified and comprehensive legal, regulatory and institutional framework for...

National Cybersecurity Policy and Strategy

READ MORE & DOWNLOAD

National Cybersecurity Policy and Strategy...

Videos

List

Collaborations & Membership

antiphishing.ng

"Antiphishing.ng Project is a collaborative effort to create a community driven public repository about phishing that works to build additional tools to benefit the security community at large."

tunCERT

"tunCERT is the National CERT of the Tunisian government under the National Agency for Computer Security. tunCERT is one of the CERT that graciously partook in pioneering ngCERT"

FiRST

"FIRST is a recognized global leader in incident response that brings together a variety of computer security incident response teams from government, commercial, and educational organizations."

Team Cymru

"Team Cymru was formed in 1998 to learn the "who and why" of malicious Internet activity. This focus on attribution resulted in the uncovering of the "what, when, where, and how" of online malevolence"