The National Information Technology Development Agency (NITDA) has warned the public against a new job scam malware “CovertCatch”, spread by cyber threat actors on the social engine, LinkedIn.
NITDA’s Director of Media and Corporate Communications, Mrs Hadiza Umar, issued the advisory on Tuesday in Abuja, noting that
the scam was targeted at sectors like defence, media, technology and the academia through fake job offers.
She stated that “by posing as recruiters or job opportunity providers, these cyber threat actors trick users into downloading malicious files or clicking harmful links.
“CovertCatch can steal data, record keystrokes and capture screen activity without being detected.
“The spread of CovertCatch malware via Linkedin poses major risks to organisations and individuals.
“Once installed on the victim’s network or device, it can steal confidential information, leading to financial loss, reputational damage, and data breaches.”
She added that it also increased the risk of further attacks like ransomware and system-wide compromise, threatening key industries and essential services.
She advised that organisations and individuals should be cautious of unsolicited job offers or recruitment messages on LinkedIn, especially those
requesting file downloads or linking to external sources.
According to her, organisations should regularly monitor unusual login activities and enforce Multi-Factor Authentication (MFA) for all accounts.
“Keep antivirus software up-to-date and scan regularly to detect anomalies promptly.
“Organisations should periodically audit Linkedin connections and restrict access to sensitive information based on role and necessity,” she advised.
