Skip to main content

"Synergy, Commitment Are Key to Global Energy Sustainability, Says Bounour

By Favour Ifeoluwa & Akinola Ajibade  The Chief Executive Officer, Egbin Power Plc, Mr Mohktar Bounour says global transition to cleaner energ and sustainable environment are achievable, as long as there is strong synergy and commitment among stakeholders in the value chain.  He spoke during the maiden edition of  Asharami Square in Lagos. This is an initiative introduced and implemented by the Sahara Group, in order to amplify discourse on energy sustainability through  media advocacy globally. He said: " Having analyzed the percentage of global greenhouse emissions attributed to sectors including electricity/heat production, agriculture/forestry and transportation, we are realised that there is need for synergy  and renewed commitment among stakeholders". According to him, Egbin Power has unwavering commitment to reduce carbon emissions and promotes sustainable energy sources, stressing that the need to depeening engagement and advocacy among stakeholders in
Post a Comment

Nigeria, 11 others in Africa lose $11m to hackers




By  Favour Ajibade


Nigeria and 11 other African countries have lost millions of dollars to a hacking group based in an unknown french speaking African country, a Singapore-based cyber security firm Group IB and Orange CERT, the IT security arm of French telecommunications company Orange have revealed in a report. 

 In the  report Nigeria and 11 other African countries lost millions of dollars to a hacking group based in an unknown French-speaking African country.

According to the report, the threat actor, which mainly targeted Francophone Africa was codenamed OPERA1ER and relied solely on known off-the-shelf tools.

The report said the threat actor managed to launch over 30 successful attacks against banks, financial services providers, and telecommunication companies between 2018 and 2022, stealing $11 million in the process.

The actual amount of damage could be up to five times higher than the amount stolen. “According to our calculations, the total amount of damage ranges from $30 million to $50 million. 

However, this could be even more,” Rustam Mirkasymov, head of cyber threat research at Group-IB’s European Threat Intelligence & Research Center in Amsterdam tells Quartz.

Affected countries are Côte d’Ivoire, Mali, Burkina Faso, Benin, Cameroon, Gabon, Niger, Nigeria, Senegal, Sierra Leone, Togo, and Uganda. Those outside Africa are Argentina, Bangladesh, and Paraguay. Most victims were attacked twice, and “their infrastructure was then used to attack other organizations.”

OPERA1ER, which also goes by the names DESKTOP-group and Common Raven traces its roots back to 2016 when it registered its first domain.

It conducts cyber-attacks over the weekends or during public holidays because according to Mirkasymov, “it is much more difficult to stop fraudulent transactions or stop an attack on these days. Even if someone detects an attempt to withdraw money, during the weekend it is not easy to stop them and get the money back.”

The report says that OPERA1ER is a seasoned threat actor and once it noticed it was being traced, it deleted its accounts and changed its trails to cover its activity last year. But it resurfaced this year.

Mirkasymov explains: “It correlates with the fact that they spend from three to 12 months from the initial access to money theft. The exact number of the gang members is unknown.”

Tactics

But contrary to modern attackers who use sophisticated software and technology such as deep learning to clone fingerprints and steal passwords, OPERA1ER uses off-the-shelf open-source programs, malware freely available on the dark web, and popular red teaming frameworks, such as Metasploit and Cobalt Strike. Red teaming is a cybersecurity technique used to test how an organization would respond to a real cyberattack.

“In at least two incidents in different banks, the attackers deployed Metasploit servers inside compromised infrastructure. Because the gang relies solely on public tools, they have to think outside the box: in one incident, it used an antivirus update server deployed in the infrastructure as a pivoting point,” the report explains.

But it starts its attacks with a very familiar tactic—high-quality spear phishing emails targeting specific employees within an organization with most of its messages written in French, “ranging from fake notifications from government tax offices to hiring offers from the Central Bank of West African States.”

Under the guise of legitimate email document attachment, OPERA1ER distributes Remote Access Trojans, such as Netwire, bitrat, venomRAT, AgentTesla, Remcos, Neutrino, BlackNET, Venom RAT, as well as password sniffers and dumpers, the report says.

Once it gains access the hacking group uses the information in further targeted phishing but takes time to study internal documentation to better prepare for the cashing out stage.

In one case, the study shows, a network of more than 400 subscriber accounts controlled by money mules hired by OPERA1ER was used to enable the cashing out of the stolen funds, mostly done overnight via ATMs.

In at least in two bank cases, OPERA1ER managed to get access to the global SWIFT messaging interface software (presumably Alliance Access) running on the banks’ computers. Though SWIFT was not compromised in the process, “the attackers were able to break into the systems inside the banks where this software was installed.” In 2018, hackers stole $6 million in an attack on the SWIFT system.

In the recent past Africa has 

Comments

Post a Comment

Popular posts from this blog

HAPPY 70 TO ELDER ADE ADEDAMOLA OGIDAN

PLATINUM BIRTHDAY ANNIVERSARY OF ELDER ADE ADEDAMOLA OGIDAN, A FOREMOST JOURNALIST & EDITOR By Favour Ifeoluwa & Akinola Ajibade Like a new born child, beaming with smiles for coming out of his mother's womb in order to live a fulfiled life, the celebrator,Ade Ogidan fits perfectly well into this category. Simply known as AAO, a shorten form of Ade Adedamola Ogidan, the thorough based journalist is without doubt, a  well grounded newsman.. With Bachelor of Science ( BSC) Degree in   Sociology and Anthropology( 1976 ) from University of Nigeria, Nsukka,  Ogidan has cut his teeth well in Journalism. Prior to this, he  taught in Osogbo Grammar School and worked at the Nigerian Communication respectively  after his youth service, a development, which no doubt prepared  him well for journalism profession and other future engagements. Pragmatic, resilient and outspoken, where it matters, Ogidan ensured  that his tenure as the first Chairman of Pineapple Estate, Ikorod
1 comment
Read more

NNPC Completes Mechanical Rehabilitation of Port Harcourt Refinery Plant

By Favour Ifeoluwa & Akinola Ajibade The Nigerian National Petroleum Company (NNPC) Limited, says that it has mechanically completed the rehabilitation of Area 5 Plant of the Port Harcourt Refining Company (PHRC). The nation's oil company began rehabilitation of the refinery two years ago, while at the same time, promised to complete its by 31st December 2023. The Group Chief Executive Officer, NNPC Ltd., Mr. Mele Kyari, said as of December 15th, 2023, 84.4% of Area 5 Plant, a key component of the Refinery, and 77.4% of the entire rehabilitation project have been completed. “In our quest to ensure that this refinery is re-streamed to continue to deliver value to Nigerians, we made a promise that we will reach a mechanical completion of phase one of the rehabilitation project by the end of December and get the other plants running in 2024. Today, we have kept those commitments,” Kyari stated. The GCEO commended NNPC's staff and the EPCIC contractors for doing a g
Post a Comment
Read more

Fed Govt Commences New VAT Sept 1

By Favour & Akinola Ajibade Buoyed by the resolve to deepen the country's revenue base and further and further speed up implementation of capital projects in Nigeria, the  Federal Government will in the next six days, precisely September 1, this year, starts collecting the  new Value Added Tax( VAT).  The government is achieving  this goal through the Federal Inland Revenue Service(FIRS).  FIRS, in a statement,  said subject to the Finance Act 2023, VAT withheld or collected, VAT on items excluded from building, the new Tertiary Education Tax rate of 3 per cent and Investment Allowances and Convertible Currencies will become effective September 1, 2023. Certain amended provisions of the Finance Act 2023 were enacted on 28th May, 2023 with the effective date of 1st May 2023. However, the effective date was changed to 1st September 2023. Some of the amended Sections are 14 (3) which deals on VAT Withheld or Collected. The VAT Act was amended to the effect that persons
Post a Comment
Read more