Zoom Security Vulnerability and SOVA Malware Threat to India


Indian Computer Emergency Response Team (CERT) has issued a warning about two cyber threats hitting the sub-continent populace active online. The first is related to a Zoom Security vulnerability that left unattended could allow hackers to sneak into the data of Zoom application meeting users.

The video conferencing platform has already issued a patch to fix the issue. But most of the users are unaware of the security weaknesses and are yet to update their platforms, respectively.

MeitY( Ministry of Electronics and Information Technology) has categorized the severity as ‘Medium’ and asserted that the susceptibility could hit those hosting meetings on Private Cloud.

Another threat that is giving jitters to Indian CERT is the entry of SOVA malware into the mobile cyber space of India. According to an update released in the last weekend, SOVA meaning Owl in Russia is being circulated online and on the play store in disguise of essential banking software.

CERT security analysts have detected that SOVA as a banking Trojan is capable of not only stealing banking credentials but also has the potential to launch Distributed denial of service attacks, Keylogging attacks, Overlay attacks, can steal browser cookies, take screenshots from web cameras, copy and paste info, launch notification manipulation attacks and Man in the middle (MITM) attacks.

Already, the USA, UK and Spain have been added as targets in July 2022 and in August they focused on Asian countries like India.

Recently, the fifth version of SOVA malware release was found to be incepted with added capabilities of encrypting data on an Android phone until a ransom is paid and is not that easy to delete or remove from the victimized device.


Naveen Goud is a writer at Cybersecurity Insiders covering topics such as Mergers & Acquisitions, Startups, Cyber Attacks, Cloud Security and Mobile Security

No posts to display