The National Information Technology Development Agency (NITDA) has issued a warning regarding a new job scam malware known as “CovertCatch,” which is being disseminated by cybercriminals on LinkedIn. In an advisory released on Tuesday in Abuja, NITDA’s Director of Media and Corporate Communications, Hadiza Umar, stated that this scam is specifically targeting sectors such as defence, media, technology, and academia through deceptive job offers.
Umar explained that these cybercriminals are posing as recruiters or job opportunity providers to trick users into downloading malicious files or clicking on harmful links. “CovertCatch can steal data, record keystrokes, and capture screen activity without being detected,” she noted.
The spread of CovertCatch malware via LinkedIn presents significant risks for both organizations and individuals. Once it infiltrates a victim’s network or device, it can exfiltrate sensitive information, leading to financial loss, reputational damage, and data breaches. Additionally, it increases the likelihood of further attacks, including ransomware incidents and comprehensive system compromises, threatening essential services and key industries.
To mitigate these risks, Umar advised organizations and individuals to exercise caution regarding unsolicited job offers or recruitment messages on LinkedIn, particularly those requesting file downloads or links to external sources. She recommended that organizations regularly monitor for unusual login activities and enforce Multi-Factor Authentication (MFA) for all accounts. “Keep antivirus software up-to-date and conduct regular scans to promptly detect anomalies,” she advised. Furthermore, organizations should periodically review their LinkedIn connections and restrict access to sensitive information based on roles and necessity.
Credit: NAN (Text Excluding Headline)
