Malware Found in Android, iOS Apps: Kaspersky

by Giorgi Kostiuk

a year ago

Kaspersky Labs has found malicious software on Google Play and Apple App Store platforms that steals crypto wallet recovery phrases.

Malicious Software SparkCat

Kaspersky analysts Sergey Puzan and Dmitry Kalinin report that once the malware called SparkCat infects a device, it searches for images using optical character recognition (OCR) stealer.

How the Malware Works

SparkCat steals recovery phrases for crypto wallets, which are enough to gain full control over the victim’s wallet for further theft of funds. The malware's flexibility allows it to also steal other personal data, such as message content or passwords, from screenshots. On Android, it uses a Java component called Spark, disguised as an analytics module.

Recommendations and Origin

Analysts recommend not storing sensitive information in phone galleries and using password managers. It's unclear if the affected apps were infected through a supply chain attack or intentionally by developers. Comments and error descriptions in Chinese were found within the code.

The SparkCat malware continues to pose a threat to Android and iOS users, highlighting the importance of security measures when using mobile apps.

Rewards

More rewards

Discover enhanced rewards on our social media.

Other news

Ethereum's Evolution into a New Decentralized Network

Vitalik Buterin announces Ethereum's transformation into a new decentralized system powered by ZKEVM and PeerDAS.

Maya Lundqvist2 minutes ago

Introduction of PeerDAS and ZKEVM in Ethereum

The integration of PeerDAS and ZKEVM is set to revolutionize data storage and transaction verification in Ethereum.

Leo van der Veen2 minutes ago

Ethereum's Technical Roadmap to 2030

Vitalik Buterin has provided a detailed technical roadmap for Ethereum's development leading up to 2030, focusing on integration and optimization to ensure network stability and increase transaction capacity.