SBI alerts customers through SMS
SBI has warned its customers about this virus through SMS. The bank has asked customers not to click on any links or install banking apps from unofficial stores. The bank said the virus steals users’ personal information. SBI wrote to customers, ‘Sova is a malware that targets banking apps to steal personal information. Do not install apps by clicking on links or from unofficial stores.
The Cyber Security Agency has issued an advisory
The country’s cyber security agency has also issued an advisory about the virus. The virus was first detected in Indian cyber space in July. Then came its fifth edition. The Computer Emergency Response Team of India (CERT-IN) said, “The institute has been informed that Indian bank customers are being targeted by a new Sova Android Trojan. It targets mobile banking. The first version of this malware was secretly launched in the market in September 2021. It can log in using name and password, steal cookies and infect the app. .
Earlier it was active in countries like America, Russia and Spain.
Earlier, the malware was more active in countries like the United States, Russia and Spain, the advisory said. But in July 2022, it started targeting many other countries including India. Accordingly, the new version of this malware disguises itself with fake Android applications to trick users. After that, it will appear with the ‘logo’ of popular legitimate apps like Chrome, Amazon and NFT (Crypto Currency Linked Token). This happens in such a way that people don’t even know when to ‘install’ these apps. Explain that CERT-In is the central technical unit to counter cyber attacks. Its aim is to protect the internet sector from ‘phishing’, ‘hacking’ and online malware virus attacks.
Works like this
“Once the fake Android application is installed on the phone, it tries to retrieve the list of target applications,” the advisory said. For this, the list of all applications installed on the mobile is sent to C2 (Command and Control Server). This server is managed by people who want to get a list of target applications. This virus can take screenshots and record videos from the webcam.
(with PTI input)