Trending 
The National Information Technology Development Agency (NITDA) has issued a critical cybersecurity advisory warning Nigerians about a new artificial intelligence-powered malware known as “DeepLoad,” which is actively targeting organisations and individuals across the country.
According to the advisory released through the Computer Emergency Readiness and Response Team (CERRT), the malware is being used against government agencies, financial institutions, businesses, and private citizens. The agency says cybercriminals are spreading the threat through fake website error messages that trick victims into pasting malicious commands into their computers.
NITDA explained that once activated, DeepLoad silently installs itself on infected systems and begins harvesting stored passwords, banking information, sensitive documents, and personal data from web browsers. The malware reportedly uses artificial intelligence techniques to avoid antivirus detection, making it harder for users and organisations to identify compromised systems.
The advisory further noted that the malware includes a hidden Windows Management Instrumentation (WMI)-based persistence mechanism that can reactivate infections even after users believe the threat has been removed.
The agency warned that successful infections could lead to unauthorised access to bank accounts, payment platforms, and mobile money services. Other possible consequences include identity theft, financial fraud, disruption of business operations, and the compromise of sensitive government networks, which NITDA says could pose risks to national security.
NITDA identified government institutions, banks, critical infrastructure operators, businesses of all sizes, and citizens who use online banking or email services as the primary targets of the threat.
As part of its recommended actions, the agency advised Nigerians never to paste commands from websites directly into their computers, noting that legitimate software providers do not request such actions from users.
The warning forms part of NITDA’s broader cybersecurity mandate through its CERRT unit, which coordinates national incident response, cybersecurity awareness, and threat advisories for both public and private sector organisations in Nigeria.
