Industry Insights

Blog, Security

What You Need to Know About Android Banking Malware

by | Monday, September 19th, 2022

We don’t often talk about mobile malware, but that doesn’t make it any less scary! An Android banking malware called Sova has once again been making the rounds, this time complete with additional features that make it scarier than the last time. What can you do to protect yourself from this threat?

Some Background Information on Sova

Sova is an Android banking trojan that is used to provide back-end access for other threats later on. It was initially developed and released in September of 2021, with the developer stating that it was not yet complete. Even in this state, it was able to harvest usernames and passwords through keylogging, cookie theft, and false overlays of popular apps.

Now, Sova is even more dangerous and can deliver ransomware to its victims, in addition to its newfound features. It can mimic over 200 banking and payment applications and can target your cryptocurrency wallets, too. Sova can also take screenshots of infected devices and record audio through an infected microphone.

It’s safe to say that Sova is an even greater threat than before.

Security researchers at Cleafy state, “The ransomware feature is quite interesting as it’s still not a common one in the Android banking trojans landscape. It strongly leverages on the opportunity arises in recent years, as mobile devices became for most people the central storage for personal and business data.”

Sova is also notable in that it can circumvent the efforts of your multi-factor authentication protocols. It can intercept the MFA tokens and steal data even if you have taken the recommended action to implement MFA for your business.

How to Protect Yourself

Sova and other types of Android malware tend to spread through fraudulent applications on the Google Play store, an applications hub for Android users. If a user unsuspectingly downloads an application infected by Sova, they could contract the malware and be in for a world of danger. We always urge users to download apps only from trusted and reputable publishers. Furthermore, you should only be downloading apps from first-party app stores rather than third-party ones, and be sure to read reviews and read the description before pulling the trigger.

Compudata can help you manage your employees’ devices through mobile device management tools. These robust enterprise solutions offer whitelisting and blacklisting of apps, remote wiping, and so much more, all in the attempt to mitigate the security risks associated with mobile devices on your company network.

To learn more, reach out to us at 1-855-405-8889.

A Glimpse Into What Compliance Looks Like for Businesses

Apr 7, 2025 | ,

It’s easy to see all the reasons why you should make data regulations and compliance a priority. After all, you want to ensure you don’t violate the trust and security of your customers, as well as the integrity of your operations. If you make even one mistake, it...

AI Search Isn’t There Yet

Apr 4, 2025 | ,

People do this all the time: if they don’t know an answer, they just make something up that sounds right. It turns out AI has the same bad habit. A Study Put AI Search to the Test, and It Did Not Go Well Researchers at the Tow Center for Digital Journalism (part of...

Remote Work Is Great, but There Are Some Pitfalls

Apr 2, 2025 | ,

Do you have employees working remotely? If you do, the real question is, are you doing everything you can to keep them productive and secure? Remote work is awesome, but it comes with its fair share of risks. Today, we get into how to competently confront them. Remote...

Hiring IT is Hard (Here’s How to Make It Easier)

Mar 28, 2025 | ,

Do you have someone on your staff who can handle most IT-related issues for your business? If not, we’re sure your organization feels it in more ways than one. The issues that come from not having IT help are only made more frustrating when it comes time to find IT...

Let’s Take the Lid Off of CAPTCHA

Mar 21, 2025 | ,

We've officially reached the point where humans have to prove they're, well, human just to access websites. One of the most common ways to do this? CAPTCHA. CAPTCHA stands for Completely Automated Public Turing test to tell Computers and Humans Apart. It might sound...

Automation Isn’t Always the Best Business Option

Mar 17, 2025 | ,

Automation makes sense from an operations standpoint, and people see this despite the many who advocate for scaling back to save jobs. For every task that can be completed, however, less than half can be automated. When you consider all the tasks that a human might be...

More Reading from Industry Insights:

AI Search Isn’t There Yet

by | Apr 4, 2025 | ,

People do this all the time: if they don’t know an answer, they just make something up that sounds right. It turns out AI has the same bad habit. A Study Put AI Search to the Test, and It Did Not Go Well Researchers at the Tow Center for Digital Journalism (part of...

Hiring IT is Hard (Here’s How to Make It Easier)

by | Mar 28, 2025 | ,

Do you have someone on your staff who can handle most IT-related issues for your business? If not, we’re sure your organization feels it in more ways than one. The issues that come from not having IT help are only made more frustrating when it comes time to find IT...