• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Malware Found in Android, iOS Apps: Kaspersky

user avatar

by Giorgi Kostiuk

a year ago

Kaspersky Labs has found malicious software on Google Play and Apple App Store platforms that steals crypto wallet recovery phrases.

Malicious Software SparkCat

Kaspersky analysts Sergey Puzan and Dmitry Kalinin report that once the malware called SparkCat infects a device, it searches for images using optical character recognition (OCR) stealer.

How the Malware Works

SparkCat steals recovery phrases for crypto wallets, which are enough to gain full control over the victim’s wallet for further theft of funds. The malware's flexibility allows it to also steal other personal data, such as message content or passwords, from screenshots. On Android, it uses a Java component called Spark, disguised as an analytics module.

Recommendations and Origin

Analysts recommend not storing sensitive information in phone galleries and using password managers. It's unclear if the affected apps were infected through a supply chain attack or intentionally by developers. Comments and error descriptions in Chinese were found within the code.

The SparkCat malware continues to pose a threat to Android and iOS users, highlighting the importance of security measures when using mobile apps.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Implications for Market Structure and Adoption of Crypto ETFs

chest

Sustained inflows into crypto ETFs throughout 2025 highlight the institutionalization of digital assets through regulated financial instruments.

user avatarElias Mukuru

Connection Between EVM Wallet Drain and Trust Wallet Breach

chest

Investigation suggests a link between the EVM wallet drain and the Trust Wallet breach, highlighting the need for enhanced security in crypto projects.

user avatarKenji Takahashi

Widespread EVM Wallet Drain Linked to Phishing Scheme

chest

A significant security breach has affected multiple EVM-compatible networks, resulting in the draining of hundreds of wallets through a phishing campaign.

user avatarDiego Alvarez

PEPE Coin Confirms Structural Breakout Above Key Support Level

chest

PEPE Coin has reclaimed the crucial support level of 0.00000050, indicating a structural breakout supported by increased market confidence and retail activity.

user avatarMaria Fernandez

Technical Analysis Indicates Potential Bitcoin Price Movements

chest

Current technical analysis of Bitcoin indicates potential price movements based on key support and resistance levels.

user avatarGustavo Mendoza

APEMARS Aims to Replicate Solana's Early Investment Success

chest

APEMARS aims to replicate Solana's early investment success by offering whitelist access for its presale, allowing early investors to secure tokens at a low price.

user avatarRajesh Kumar

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.