Home News Cyber-attack: NCC Urges Users To Enable Automatic Updates On Anti-virus Products

Cyber-attack: NCC Urges Users To Enable Automatic Updates On Anti-virus Products

0
66

The Nigerian Communications Commission (NCC) says enabling automatic update features for AVAST and AVG anti-virus applications could prevent cyber vulnerabilities.

The commission’s computer security incident response team (CSIRT) said this on Sunday in a statement signed by Ikechukwu Adinde, NCC’s director of public affairs.

Organic Creame

NCC said the vulnerabilities in AVAST and AVG anti-virus apps can lead to millions of devices being attacked.

The commission, however, advised consumers to always enable automatic update features to stay safe.

NCC has been vocal about the increasing rate of cyber-attacks in recent times.

It said the latest advisory is part of efforts to keep Nigerians safe on the internet.

“The AVAST and AVG Antiviruses can lead to attacks on millions of devices with high impact in terms of consequences to the ICT user,” the statement reads.

“The threat types as a result of this vulnerability are bypass authentication, remote code execution and unauthorised access while consequences range from privilege escalation, bypass security products, overwrite system components and corrupting the operating system.

According to CSIRT, researchers at SentinelOne security firm have discovered two potentially damaging vulnerabilities in AVAST and AVG antivirus products that allow attackers to escalate privileges enabling them to disable security products, overwrite system components, corrupt the operating system, or perform malicious operations unimpeded.

“Two vulnerabilities identified as CVE-2022-26522 and CVE-2022-26523 targeted the “anti rootkit” driver of Avast antivirus (also used by AVG) allowing an attacker with limited privileges on the targeted system to execute code in system mode (kernel mode) and take complete control of the device. Moreover, the vulnerabilities allow complete take-over of a device, even without privileges, due to the ability to execute code in kernel mode.

“However, the cybersecurity centre has offered tripartite measures that should be taken by Internet/ICT users to prevent being vulnerable to cyber threats. They include enabling automatic update features for AVAST and AVG antiviruses, upgrading AVAST and AVG antiviruses to version 22.1.2504, as well as carrying out regular patch management.

Latest News
Stanbic IBTC Bank's Economic Forum Charts Nigeria's Path Through A Shifting Global EconomyTHE YEWA AWORI SOCIO-ECONOMIC BLUEPRINTS FOR THE YAYI ERA AND BEYONDEMHF Opens Heritage Event Hall, Unveils Vision For Africa’s Premier Music Heritage CentreNigeria’s Youngest Chartered Accountant, 16-Year-Old Danielle Osasere, Honoured At MFM Prayer CityThe Kick Of A Dying Horse: Rejecting The Retrogressive Agents Of Darkness In YEWA-AWORI LandNigerians Must Embrace Production, Entrepreneurship To Become Great- Emir of DutseTASFUED Holds Formal Investiture Ceremony for Sixth Substantive Vice-ChancellorOlodo Uprising: Carter Efe mirrors our collective disaster“I’m No Fraudster” — Adeyemi Fires Back at Presidency Over PFIPC ControversyPresident Tinubu Urges Nigerian Media to Prioritise Credibility Over ClickbaitPresidency Disowns Alleged Fake Presidential Council, Says Suspect Facing Fraud ChargesStanbic IBTC Bank Nigeria PMI®: New Orders Continue To Rise Sharply In JuneFormer Minister Uche Nnaji Arrested at Enugu Airport Over Alleged Certificate ForgeryTHE YEWA AWORI SOCIO-ECONOMIC BLUEPRINTS FOR THE YAYI ERA AND BEYONDMessi Scores Off the Bench as Argentina Beat Jordan, Sets New World Cup Record