2. What is SOVA Virus?
The SOVA virus is a new type of mobile banking
malware campaign.
It uses the virus called SOVA android Trojan.
Mr. V.Veeranan, B.Sc. Computer Science, Dip. in Yoga
3. Features of SOVA Virus.
The virus collects keystrokes and steals cookies from
the devices,
They seize the Multi-factor Authentication (MFA)
Tokens.
Malware takes screenshots and records videos, from
the webcam without the user’s permission.
It can also copy and paste up to 200 banking and
payment applications.
Mr. V.Veeranan, B.Sc. Computer Science, Dip. in Yoga
4. Target
The virus targets more than 200 mobiles applications
that consist of banking applications along with crypto
Exchanges and wallets.
* Some was earlier focusing on countries like
the US, Russia and Spain, but in July 2022 it added
several other countries, including India, to its list of
target.
Mr. V.Veeranan, B.Sc. Computer Science, Dip. in Yoga
5. Concerns
The virus is one of the most dangerous viruses for
mobiles net banking users in India.
It is hard to uninstall
It has the capability to encrypt all the data
It will result in creating harmful situation for users
that affect their privacy and the security of sensitive
customer data.
This will further lead to large-scale attacks and
financial fraud occurring on the users’ side.
Mr. V.Veeranan, B.Sc. Computer Science, Dip. in Yoga
6. Prevention Methods
Limit your download sources to official app stores,
device manufactures of operating system app stores.
Always review the apps before installing them from
the Google play store app. Never check the ‘Untrusted
sources’ check box for side loaded apps.
Perform updates and parches when present on the
exercise caution.
Be careful of the unidentified email-to-test services to
hide their actual numbers.
Mr. V.Veeranan, B.Sc. Computer Science, Dip. in Yoga
7. How does it work?
The newest version of the malware can hide within
fake android apps that carry the logo of some authentic
apps like….
Google Chrome, Amazon, NFT platforms and others
to dupe users into installing them.
* Whenever the virus log into their net banking apps
or access their bank accounts with compromised devices,
this malware can steal the credentials of the user without
notifying them.
Mr. V.Veeranan, B.Sc. Computer Science, Dip. in Yoga