Be Wary Of IGVM Ransomware, NITDA urge Nigerians
The National Information Technology Development Agency (NITDA) has advised Nigerians to be wary of IGVM, a file-encrypting Ransomware infection that restricts access to data by encrypting files with the “igvm” extension.
The agency stated this in a press release noting that the “igvm” attempts to extort money from victims by requesting for “ransom”, in the form of Bitcoin cryptocurrency in exchange for access to data.
According to the release, the crypto-virus spreads in different methods like web injectors, pirated software, spam emails, malicious software bundles, fake software updates, and deceiving online ads.
It equally prevents the victims from restoring their file copies for free, using Windows tools.
” The virus modifies Windows HOSTS file by adding a list of domains to it. These domains are mostly computer or IT-related websites, so the attackers capitalize on this measure to prevent the victim from seeking help or information online.”
NITDA thereby urged the general public to ensure regular data backup, and recovery plan for all critical information.
“They can use application whitelisting to help prevent malicious software and unapproved programs from running, Keep operating system and software up-to-date with the latest patches.
They can maintain up-to-date anti-virus software, while scanning all software downloaded from the internet before installing.”
“Other preventive measures include unfollowing unsolicited web links in emails, not downloading or opening suspicious email attachments, and not opening emails from suspicious recipients.
If paying up seems like the only reason to get your files back, we strongly advise against ransom payments. Various cybersecurity experts do not recommend paying up due to financial security reasons.”