NCC Alerts Telecom Users of WannaCry Cyber Attacks

Tue, May 16, 2017 | By publisher


Business

THE Nigerian Communications Commission, NCC, has alerted operators and users telecommunications services of the recent outbreak of a Ransomware Virus known as “WannaCry.” According to the NCC, the Ransomware is capable of infecting and encrypting all files on a system or any smart device until an amount of money “is paid for a decryption key, or other means of retrieval (which may lead to data loss) are used to recover the system as an alternative.”

Thus, the commission said proactive measures should be “taken by all players in the telecommunication eco-system to forestall the hazards of critical data loss, financial losses and ultimately network/business disruption.”

The NCC, therefore, urged that the following protective measures be taken, amongst others:

  1. To obtain software patch released by Microsoft in March 2017 to fix the Ransomware Virus.
  2. To plan scheduled penetration tests on the networks and systems to ensure protection and availability at all times.
  3. Subscribers who use their smartphones as substitutes to computers for internet access should protect themselves and their devices by:
  • Not opening e-mail attachments/links from unknown sources.
  • Not clicking pop-ups and applets on unknown websites.
  • Installing effective antivirus software for their mobile devices.

On its part, the NCC said it had taken the following proactive measures in fulfilling its statutory mandate:

First, “the commission has advised Mobile Network Operators, MNOs, to initiate regular assessment and audit of their cybersecurity readiness. All operators should continue to ensure that their backup/ disaster recovery strategies are in place and up to date.”

Second, the NCC said it had advised all operators to ensure continued deployment of effective firewalls, login passwords and antivirus management regime.

Third, the commission is working towards establishing a link with the Cybersecurity Alert System on its website in order to effectively give current information on global cyber threats/incidents that could be immediately communicated to and shared by stakeholders.

Forth, the commission promised to continue to provide more cybersecurity training for its staff, in fulfillment of its statutory mandate to assure the security and integrity of the national telecommunications network.

—  May 16, 2017 @ 12:40 GMT

Tags: