Categories: NewsNigeria News

Latest TikTok Challenge Used To Steal Information From Devices, NCC Warns

The latest TikTok challenge is used to steal information from devices, NCC has warned.

 

Glamtush reports that the Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has warned about the potential harm of taking part in the Invisible Challenge on short-form video hosting service, TikTok, revealing that it exposes devices to Information-Stealing Malware.

This online news understands that an NCC-CSIRT advisory said threat actors have taken advantage of a viral TikTok challenge, known as the Invisible Challenge, to disseminate an information-stealing malware known as the WASP (or W4SP) stealer.

The WASP stealer, which is high in probability with critical damage potential, is a persistent malware hosted on discord that its developer claim is undetectable.

The advisory said “The Invisible Challenge involves wrapping a somewhat transparent body contouring filter around a presumed naked individual. Attackers are uploading videos to TikTok with a link to software that they claim can reverse the filter’s effects.

“Those who click on the link and attempt to download the software, known as “unfilter,” are infected with the WASP stealer. Suspended accounts had amassed over a million views after initially posting the videos with a link. Following the link leads to the “Space Unfilter” Discord server, which had 32,000 members at its peak but has since been removed by its creators.

“Successful installation will allow the malware to harvest keystrokes, screenshots, network activity, and other information from devices where it is installed. It may also covertly monitor user behaviour and harvest Personally Identifiable Information (PII), including names and passwords, keystrokes from emails, chat programs, websites visited, and financial activity. This malware may be capable of covertly collecting screenshots, video recordings, or the ability to activate any connected camera or microphone,” it explained.

The Team said some ways to forestall such an attack include avoiding clicking on suspicious links, using anti-malware software on your devices, checking the app tray and removing any apps that you do not remember installing or that are dormant and embracing healthy password hygiene practices such as using a password manager.

The CSIRT is the telecom sector’s cyber security incidence centre set up by the NCC to focus on incidents in the telecom sector and as they may affect telecom consumers and citizens at large.

The CSIRT also works collaboratively with Nigerian Computer Emergency Response Team (ngCERT), established by the Federal Government to reduce the volume of future computer risk incidents by preparing, protecting, and securing Nigerian cyberspace to forestall attacks, and problems or related events.

GLAMTUSH

Recent Posts

SDNON Unveils Ambitious Plans For 2025, Celebrates Outgoing Executives

The newly elected SDNON excos have unveiled their ambitious plans for 2025 and celebrated the outgoing executives.…

6 hours ago

Primate Ayodele Releases 2025 Prophecies For All Sectors

The leader of the INRI Evangelical Spiritual Church, Primate Elijah Ayodele, has released his 2025…

16 hours ago

Timeless Tunes: How Throwback Songs Bond Africans In 2024

Music has always been central to African culture, reflecting societal changes while connecting generations. In…

2 days ago

Sinach To Feature In Global Christian Event, Gather25

Sinach is set to feature in the global Christian event, Gather25.   Glamtush reports that Gather25,…

2 days ago

Yahaya Bello Released After Meeting Bail Conditions

Yahaya Bello has been released after meeting his bail conditions.   Glamtush reports that former…

2 days ago

Makinde Cancels Birthday Celebration To Honour Ibadan Stampede Victims

Makinde has cancelled his birthday celebration to honour the Ibadan stampede victims.   Glamtush reports that Governor…

2 days ago