NITDA Warns Nigerians About Grandoreiro Malware

Babatunji Wusu –

• Grandoreiro Malware targets banking credentials and personal data through phishing tactics.
• Spread via phishing emails and fake websites, disguised as legitimate documents or updates.
• Risk of financial loss and identity theft due to unauthorized device access.
• Prevention tips include avoiding unknown email links, using trusted software sources, and enabling multifactor authentication.

The National Information Technology Development Agency (NITDA) has issued a warning regarding the Grandoreiro malware, a sophisticated global threat designed to steal banking credentials and personal information. In an advisory released on Monday by the Computer Emergency Readiness and Response Team, NITDA emphasized the malware’s advanced capabilities, such as screen overlays and remote device control, making it a significant security risk.

Grandoreiro is primarily spread through phishing emails and fake websites, which deceive users into downloading malicious software disguised as legitimate updates or documents. Once installed, it bypasses security controls, giving attackers unauthorized access to the victim’s device.

The malware poses a severe threat, potentially leading to financial loss and identity theft. NITDA urges users to take proactive security measures, such as avoiding links and attachments from unknown emails, downloading software only from trusted sources, and enabling multifactor authentication to protect online banking and financial accounts. Other recommended precautions include keeping antivirus software up to date, avoiding public Wi-Fi during financial transactions, and regularly monitoring bank accounts for unauthorized activity.

As cyber threats like Grandoreiro continue to evolve, NITDA stresses the importance of vigilance and strong security practices to safeguard personal information.