The National Information Technology Development Agency (NITDA) is raising the red flag on a dangerous new malware outbreak targeting Nigerians through counterfeit versions of the Google Play Store, as the digital threat landscape across Africa intensifies.

In a fresh cybersecurity alert issued by the federal IT agency, cybercriminals are now deploying a fast-spreading malware strain—PlayPraetor Trojan—through lookalike websites that closely mimic Google’s trusted app marketplace.

“A widespread phishing campaign is actively spreading a new malware strain named PlayPraetor Trojan,” NITDA reveals in an official statement. “Cyber criminals are using fraudulent websites designed to mimic the Google Play Store to lure victims into downloading malicious applications.”

In a fresh cybersecurity alert issued by the federal IT agency, cybercriminals are now deploying a fast-spreading malware strain—PlayPraetor Trojan—through lookalike websites that closely mimic Google’s trusted app marketplace.

Once installed, the malware is granting hackers remote access to victims’ devices, enabling them to steal sensitive data, harvest login credentials, commit financial fraud, and install further malicious software—turning ordinary smartphones into high-risk cyber targets.

PlayPraetor: How the scam works

Victims are typically falling prey by clicking links that appear to lead to Google’s Play Store but instead redirect to deceptive domains. On downloading the fake apps, users are unknowingly opening the door to full device compromise.

“This Trojan is especially dangerous for individuals and businesses alike,” NITDA warns, as attackers can not only hijack devices but also use them as launchpads for further cyberattacks.

What Nigerians can do about PlayPraetor

To help curb the spread of the PlayPraetor Trojan, the agency is urging citizens to follow basic cyber hygiene practices:

• Only download apps from the official Google Play Store or verified sources.
• Double-check developer details and user reviews before installation.
• Keep your devices and apps updated to patch security loopholes.
• Install trusted mobile security software that can detect and block malicious activity.

NITDA is also referencing a technical report by CTM360, published via The Hacker News, offering deeper insight into the PlayPraetor campaign.

As cybercriminals evolve in tactics, the agency is calling on the public to stay vigilant, urging: “Report any suspicious links or unusual app behaviour to appropriate cybersecurity authorities.”