The National Information Technology Development Agency (NITDA) has raised concerns over a new wave of artificial intelligence-powered malware attacks targeting Nigerian institutions, warning that government agencies, banks, businesses, and private individuals are increasingly vulnerable to sophisticated cyber threats.
In a critical advisory issued through its Computer Emergency Readiness and Response Team (CERRT.NG), the agency disclosed that a new malware strain known as “DeepLoad” is actively targeting Nigerian organisations by exploiting social engineering techniques and AI-enabled evasion tactics.
According to NITDA, the malware spreads through deceptive website prompts designed to trick users into running malicious commands on their devices. The agency said the attacks are engineered to bypass conventional antivirus systems while silently harvesting sensitive information from infected computers.
“The malware is distributed through a social engineering technique involving a fake website error,” NITDA stated in the advisory. It explained that once activated, DeepLoad installs itself discreetly on victim devices and begins extracting stored credentials and browser data, including passwords, banking information, and personal records.
NITDA warned that the malware leverages artificial intelligence to avoid detection by traditional security tools. “Once executed, DeepLoad silently installs itself, harvests stored credentials and sensitive data from major browsers, and leverages artificial intelligence to evade antivirus detection,” the agency said.
It further disclosed that the malware contains an advanced persistence mechanism capable of restoring infections even after users believe the threat has been removed. According to the advisory, the malware uses a hidden Windows Management Instrumentation-based process that can reactivate infected systems up to three days after attempted removal.
“Critically, the malware incorporates a hidden WMI-based persistence mechanism capable of reactivating the infection up to three days after apparent removal,” it added.
The warning comes amid growing cybersecurity concerns across Nigeria following a series of attacks on financial institutions and government platforms. Recent incidents involving the Corporate Affairs Commission and financial technology infrastructure have heightened fears over vulnerabilities in the country’s digital framework.
NITDA Director-General Kashifu Abdullahi recently warned that artificial intelligence is accelerating the sophistication of cyber threats and increasing risks for interconnected institutions. “The mindset that organisations should hide attacks to protect their reputation must change,” Abdullahi said while speaking on the broader cybersecurity landscape. “If one organisation is compromised, it can become a launch pad to attack others.”
Cybersecurity experts have also cautioned that AI-driven attacks are becoming harder to detect due to their speed and automation. Technology consultant Adedoyin Adedeji warned that AI systems can rapidly identify vulnerabilities in government and corporate platforms. “AI is one of the biggest threats we have today,” Adedeji said, noting that automated systems can discover security weaknesses within hours.
NITDA advised organisations and individuals to avoid copying commands from suspicious websites, refrain from opening unknown installer files from USB devices, enable two-factor authentication, and avoid storing sensitive banking passwords in browsers.
The agency also urged institutions to improve staff awareness, monitor systems for hidden persistence tools, and isolate infected devices immediately to prevent wider compromise. “Given its severity and confirmed active targeting of Nigerian entities, all organisations and individuals must implement the protective measures outlined in this advisory immediately,” NITDA advised.
Read:
- NITDA Partners with Nkenne AI to Advance AI‑Powered Language
- Nigeria’s E-Governance Bill 2025: What It Means for AI and for You
As cyber threats continue to evolve with advances in artificial intelligence, experts say stronger collaboration among government agencies, private institutions, and cybersecurity professionals will be critical to safeguarding Nigeria’s digital infrastructure against increasingly sophisticated attacks.
Senior Reporter/Editor
Bio: Ugochukwu is a freelance journalist and Editor at AIbase.ng, with a strong professional focus on investigative reporting. He holds a degree in Mass Communication and brings extensive experience in news gathering, reporting, and editorial writing. With over a decade of active engagement across diverse news outlets, he contributes in-depth analytical, practical, and expository articles exploring artificial intelligence and its real-world impact. His seasoned newsroom experience and well-established information networks provide AIbase.ng with credible, timely, and high-quality coverage of emerging AI developments.