• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Malware Found in Android, iOS Apps: Kaspersky

user avatar

by Giorgi Kostiuk

a year ago

Kaspersky Labs has found malicious software on Google Play and Apple App Store platforms that steals crypto wallet recovery phrases.

Malicious Software SparkCat

Kaspersky analysts Sergey Puzan and Dmitry Kalinin report that once the malware called SparkCat infects a device, it searches for images using optical character recognition (OCR) stealer.

How the Malware Works

SparkCat steals recovery phrases for crypto wallets, which are enough to gain full control over the victim’s wallet for further theft of funds. The malware's flexibility allows it to also steal other personal data, such as message content or passwords, from screenshots. On Android, it uses a Java component called Spark, disguised as an analytics module.

Recommendations and Origin

Analysts recommend not storing sensitive information in phone galleries and using password managers. It's unclear if the affected apps were infected through a supply chain attack or intentionally by developers. Comments and error descriptions in Chinese were found within the code.

The SparkCat malware continues to pose a threat to Android and iOS users, highlighting the importance of security measures when using mobile apps.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Strategic Investment Approaches Amid Uncertainty

chest

Amid current market uncertainty, analyst Michal van de Poppe plans to implement a dollar-cost averaging strategy for select altcoins starting in April 2024.

user avatarJacob Williams

Morgan Stanley Partners with Coinbase and BNY Mellon for Bitcoin ETF

chest

Morgan Stanley has partnered with Coinbase and BNY Mellon to manage its Bitcoin ETF, with Coinbase as the prime broker and custodian, and BNY Mellon handling cash and administrative functions.

user avatarSon Min-ho

MYX Finance Implements Robust Security Framework

chest

MYX Finance has established a comprehensive security framework designed to manage risks and protect liquidity providers.

user avatarZainab Kamara

MYX Finance Revolutionizes DEX with Matching Pool Mechanism

chest

MYX Finance introduces a groundbreaking Matching Pool Mechanism to enhance trading efficiency on decentralized exchanges.

user avatarAyman Ben Youssef

2026: The Year of ESG Operationalization in Agriculture

chest

In 2026, the agricultural sector focuses on ESG compliance due to new EU regulations requiring traceability for products, leading to higher market prices for sustainable assets.

user avatarFilippo Romano

Farmland Values Show Resilience in 2026 Market

chest

Farmland values in the US Midwest show resilience in 2026, driven by new ecological models and attracting private equity investment.

user avatarEmily Carter

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.