NCC Warns Against Harmful App 

The Nigerian Communications Commission’s Computer Security Incident Response Team (NCC-CSIRT) has warned against a malware attack that steals Facebook account credentials also known as “Schoolyard Bully”.
NCC-CSIRT said it has infected over 300,000 android devices, which prompted an advisory, reminding users to only download applications from official sites and application stores.
Disclosing this recently in Abuja, the Director of Public Affairs, NCC, Dr Reuben Muoka, said researchers from mobile security firm, Zimperium, found several apps that transmit the “Schoolyard Bully” malware.
He said school bully disguised itself as reading and educational app with a variety of books and topics for its victims to study.
Mouka said the malicious apps are available on Google Play, adding, “yet they have already been taken down and they still spread via third-party Android app shops.
“The NCC-CSIRT advisory in this regard further recommended that users double-check each application and uncheck boxes that request extra third-party downloads when installing apps downloaded from the Google Play Store.
“And to use anti-malware applications to routinely scan their devices for malware.
“The primary objective of the malware, which affects all versions of Facebook Apps for Android, is to steal Facebook account information.
“To also steal email address and password, account ID, username, device name, device RAM (Random Access Memory), and device API (Application Programming Interface).
“The malware loads a legitimate URL (web address) inside a WebView (a WebView maps website elements that enables user interaction through Android View objects and their extensions) with malicious JavaScript injected.