Connect with us

News

NCC hints on measures to guard against cyber attacks

Published

on

Spread the love

Following the possibility of cyber attacks by hackers worldwide, the Nigerian Communications Commission (NCC) Sunday shared measures with telecom consumers in Nigeria to guard against vulnerability by activating the automatic updates of antivirus softwares.

The Commission identified AVAST and AVG antiviruses as potential cyber vulnerabilities.

Change of Name

This was disclosed in a release by the NCC’s Computer Security Incident Response Team (CSIRT), noting that “cyber vulnerability in AVAST and AVG Antiviruses can lead to attacks on millions of devices with high impact in terms of consequences to the ICT user.”

NCC’s CSIRT pointed out that this could be through “Byepass Authentication Code Execution and Unauthorised Qcxess”.

The implication of the vulnerability ranges from Privilege Escalation, Bypass Security Products, Overwrite System Components and corruption of the Operating System.

The .NCC quoted its security unit as saying, “researchers at SentinelOne security firm have discovered two potentially damaging vulnerabilities in AVAST and AVG antivirus products that allow attackers to escalate privileges enabling them to disable security products, overwrite system components, corrupt the operating system, or perform malicious operations unimpeded.

The CSIRT said, “Two vulnerabilities identified as CVE-2022-26522 and CVE-2022-26523 targeted the “Anti Rootkit” driver of Avast antivirus (also used by AVG) allowing an attacker with limited privileges on the targeted system to execute code in system mode (kernel mode) and take complete control of the device. Moreover, the vulnerabilities allow complete take-over of a device, even without privileges, due to the ability to execute code in kernel mode,” the CSIRT said in the advisory.

On measures to keep consumers’ devices safe, the cyber-security center suggested a tripartite measure that should be taken by Internet/ICT users to prevent being vulnerable to cyber threats.

The measures include, “enabling automatic update feature for AVAST and AVG antiviruses, upgrading AVAST and AVG antiviruses to version 22.1.2504, as well as carrying out regular patch management.”

Contact Us:

  • Address: Address: 1st Floor,  Nwakpabi Plaza,  Suite 110, Waziri Ibrahim Crescent, Apo,  Abuja
  • Tel: +234 7036084449, +234 8066722600, +234 7012711701
  • Email: info@capitalpost.ng
  • Email: capitalpost20@gmail.com

Quick Links: