• Home
  • News
  • Politics
  • Business
  • National
  • Entertainment
    • Fashion & Style
  • Foreign News
  • Health
  • Leadership
  • Security
  • Sports
  • Tech
  • News Watch Magazine
  • CSONew24TV
Wednesday, June 7, 2023
CSO News
  • Home
  • CSO Icons
  • Press Release
  • Documentary
  • Awards
  • About Us
    • Meet The Team
      • Our Mission
      • Our Projects
      • Our Team
      • Our Vision
  • Contact Us
  • CSO NewsWatch Magazine
    • CSO News Watch May 2021
    • CSO News Watch, June 2021
    • CSO NewsWatch, July 2021
    • CSO NewsWatch, August 2021
    • CSO NewsWatch, September 2021
  • CSONews24TV
    Strengthening Internal Party Democracy in Nigeria.

    Strengthening Internal Party Democracy in Nigeria.

No Result
View All Result
  • Home
  • CSO Icons
  • Press Release
  • Documentary
  • Awards
  • About Us
    • Meet The Team
      • Our Mission
      • Our Projects
      • Our Team
      • Our Vision
  • Contact Us
  • CSO NewsWatch Magazine
    • CSO News Watch May 2021
    • CSO News Watch, June 2021
    • CSO NewsWatch, July 2021
    • CSO NewsWatch, August 2021
    • CSO NewsWatch, September 2021
  • CSONews24TV
    Strengthening Internal Party Democracy in Nigeria.

    Strengthening Internal Party Democracy in Nigeria.

No Result
View All Result
CSONews24
No Result
View All Result
Home News

Revealed! Two ways hackers steal information through Facebook, phone charging

Lami Akilah by Lami Akilah
January 28, 2022
in News, Security
0
Revealed! Two ways hackers steal information through Facebook, phone charging
2.4k
VIEWS

In a bid to curb the ugly menace of cyber theft, the Nigerian Communications Commission’s Cyber Security Incident Response Team (NCC-CSIRT) has independently identified two cyber vulnerabilities and advised Nigerian telecom consumers on the measures to be taken to get protected from the cyber-attacks.

The CSIRT, in its first-ever security advisories less than three months after its creation, has solely identified the two cyber-attacks targeting the consumers and proffer solutions that can help telecom consumers from falling victims to the two cyber vulnerabilities.

The first is described as Juice Jacking, which can gain access into consumers’ devices when charging mobile phones at public charging stations and it applies to all mobile phones. The other is a Facebook for Android Friend Acceptance Vulnerability, which targets only Android Operating System.

According to CSIRT security Advisory 0001 released on January 26, 2022, with Juice Jacking, attackers have found a new way to gain unauthorized entry into unsuspecting mobile phone users’ devices when they charge their mobile phones at public charging stations.

RelatedPosts

“Uber and Bolt Drivers Stage Nationwide Strike, Demanding Fair Pay and Conditions”

FCTA Set to Construct Bicycle Lanes.

Wike: I Will First Consult My Wife, If Tinubu Offers Me Appointment

Subsidy removal: TUC presents their demands to Tinubu

Many public spaces, restaurants, malls and even in the public trains do offer complementary services to their customers in a bid to enhance customer services, one of which is providing charging ports or sockets.

However, an attacker can leverage this courtesy to load a payload in the charging station or on the cables they would leave plugged in at the stations.

Once unsuspecting persons plug their phones at the charging station or the cable left by the attacker, the payload is automatically downloaded on the victims’ phone. This payload then gives the attacker remote access to the mobile phone, allowing them to monitor data transmitted as text, or audio using the microphone.

The attacker can even watch the victim in real time if the victims’ camera is not covered. The attacker is also given full access to the gallery and also to the phone’s Global Positioning System (GPS) location.

When an attacker gains access to a user’s Mobile phone, he gets remote access to the User’s phone which leads to breach in Confidentiality, Violation of Data Integrity and bypass of Authentication Mechanisms. Symptoms of attack may include sudden spike in battery consumption, device operating slower than usual, apps taking a long time to load, and when they load they crash frequently and cause abnormal data usage.

The NCC-CSIRT, however, proffered solutions to this attack to include using ‘charging only USB cable’, to avoid Universal Serial Bus (USB) data connection; using one’s AC charging adaptor in public space; and not granting trust to portable devices prompt for USB data connection.

Other preventive measures against Juice Jacking include installing Antivirus and updating them to the latest definitions always; keeping mobile devices up to date with the latest patches; using one’s own power bank; keeping mobile phone off when charging in public places; as well as ensuring use of one’s own charger, if one must charge in public.

On the other hand, the NCC-CSIRT Advisory 0001 of January 27, 2022, warns that Facebook for Android is vulnerable to a permission issue which gives privilege to anyone with physical access to the android device to accept friend requests without unlocking the phone. The products affected include Versions 329.0.0.29.120 of Android OS.

With this, the attacker will be able to add the victim as a friend and collect personal information of the victim, such as Email, Date of Birth, Check-ins, Mobile phone number, Address, Pictures and other information that the victim may have shared, which would only be visible to his/her friends.

However, to be protected from the Facebook-associated vulnerability, NCC-CSIRT in the security advisory recommends to users to disable the feature from their device’s lock screen notification settings.

The NCC-CSIRT was inaugurated in October, 2021 to provide guidance and direction for the constituents in dealing with issues relating to the security of critical infrastructure in their possession, and periodically assess, review and collate the threat landscape, risks, and opportunities affecting the communications sector, in order to provide advice to relevant stakeholders in those regards.

As the telecoms-industry specific intervention, the objective of which aligns with the objective of the National Cybersecurity Policy and Strategy (NCPS) document published by the Office of the National Security Adviser (ONSA), the NCC-CSIRT ensures continuous improvement of processes and communication frameworks to guarantee secure and collaborative exchange of timely information while responding to cyber threats within the sector.

In recent times, NCC-CSIRT has raised a series of cyber-vulnerability awareness based on security advisories it receives from the Nigerian Cybersecurity Emergency Response Team (ngCERT), which is the national body for the implementation of the NCPS objective. However, Juice Jacking and Facebook for Android Friend Acceptance Vulnerabilities are the two first-ever cyber vulnerabilities published by the NCC-CSIRT.

Tags: FaceBookHackersNCCPhone

Get real time update about this post categories directly on your device, subscribe now.

Unsubscribe
Lami Akilah

Lami Akilah

RelatedPosts

News

“Uber and Bolt Drivers Stage Nationwide Strike, Demanding Fair Pay and Conditions”

by Rahab James
June 7, 2023
0

"Uber and Bolt Drivers Stage Nationwide Strike, Demanding Fair Pay and Conditions       The Amalgamated Union of App-based...

Read more
FCTA Set to Construct Bicycle Lanes.
News

FCTA Set to Construct Bicycle Lanes.

by Nwumeh Ozioma
June 5, 2023
0

The Federal Capital Territory Administration  (FCTA) is set to promote the development of bicycle lanes in the supply of arterial...

Read more
Wike: I Will First Consult My Wife, If Tinubu Offers Me Appointment
News

Wike: I Will First Consult My Wife, If Tinubu Offers Me Appointment

by Nwumeh Ozioma
June 5, 2023
0

The immediate past governor of Rivers State, Nyesom Wike, has said he would make consultations with his wife and friends...

Read more

Discussion about this post

Like our Page

  • Trending
  • Comments
  • Latest
“My appointment genuinely originated from God” says CG-NPC

“My appointment genuinely originated from God” says CG-NPC

September 25, 2020
Taraba Killing: The Invasion Of Bandits In Takum

Taraba Killing: The Invasion Of Bandits In Takum

May 22, 2023
PROFESSOR ANGELA FREEMAN MIRI: THE TRIUMPH OF PROACTIVE LEADERSHIP OVER ETHNICITY AND PATRIARCHY

PROFESSOR ANGELA FREEMAN MIRI: THE TRIUMPH OF PROACTIVE LEADERSHIP OVER ETHNICITY AND PATRIARCHY

March 9, 2021
#EndSARS: NPC lauds Buhari, decry hoarding of Covid-19 palliatives

#EndSARS: NPC lauds Buhari, decry hoarding of Covid-19 palliatives

November 6, 2020
178 Fidelity Bank staffs begs Peter Obi for Intervention over unpaid arrears, employments

178 Fidelity Bank staffs begs Peter Obi for Intervention over unpaid arrears, employments

June 20, 2022
Defection: APC needs your piety, peaceful mien- RWGCI welcomes Tina Banku

Defection: APC needs your piety, peaceful mien- RWGCI welcomes Tina Banku

July 4, 2021
Buhari receives support on directive to carryout  forensic audit of NDDC

CPTA congratulates Okumagba on his successful screening as NDDC MD

0

Harry Maguire Signals Desire to Depart Manchester United

0
2019 Elections: Police impedes seven bags of alleged smuggled ballot papers

2019 Elections: Police impedes seven bags of alleged smuggled ballot papers

0
BREAKING: CCT makes U-turn, withdraws arrest warrant against CJN,Onnoghen

BREAKING: CCT makes U-turn, withdraws arrest warrant against CJN,Onnoghen

0
BREAKING: CCT makes U-turn, withdraws arrest warrant against CJN,Onnoghen

BREAKING: Fraud: CCT adjourns CJN, Onnoghen case till March 11

0
BREAKING: Kogi Senator allegedly survives ghastly auto crash

BREAKING: Kogi Senator allegedly survives ghastly auto crash

0

Harry Maguire Signals Desire to Depart Manchester United

June 7, 2023

“Uber and Bolt Drivers Stage Nationwide Strike, Demanding Fair Pay and Conditions”

June 7, 2023

Leadership Crisis in Nasarawa State Assembly Leads to Emergence of Two Speakers

June 7, 2023

NLC Cancels Strike, Accuses Industrial Court of Bias in Fuel Subsidy Dispute

June 7, 2023

Controversy Surrounds Peter Obi’s Meeting with LP Lawmakers on National Assembly Leadership

June 7, 2023

Sophia Momodu speaks out on Davido’s decision to stop caring for Imade Adeleke.

June 6, 2023
CSO News

Follow us on social media:

CSONews24 is an online News platform which focuses on general news and happenings in the Civil Society, humanitarian sector and Nigeria

Recent News

Harry Maguire Signals Desire to Depart Manchester United

June 7, 2023

“Uber and Bolt Drivers Stage Nationwide Strike, Demanding Fair Pay and Conditions”

June 7, 2023

CSONews24

https://www.youtube.com/watch?v=4VCdx6putuI
  • About
  • Advertise
  • Careers
  • Contact Us
  • Term of Service
  • CSONews24TV

© 2020 CSONews24 Designed by Digital Clan TD

No Result
View All Result
  • Home
  • News
  • Politics
  • Business
  • National
  • Entertainment
    • Fashion & Style
  • Foreign News
  • Health
  • Leadership
  • Security
  • Sports
  • Tech
  • News Watch Magazine
  • CSONew24TV

© 2020 CSONews24 Designed by Digital Clan TD

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.