• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

SparkCat Malware Found in SDKs on Google Play and App Store

user avatar

by Giorgi Kostiuk

a year ago

Cybersecurity experts from Kaspersky have discovered the SparkCat malware hidden in SDKs on Google Play and App Store. It steals crypto wallet recovery phrases using OCR technology, having infected more than 242,000 devices.

Discovery of SparkCat Malware in SDKs

The SparkCat malware was found in SDKs on both Google Play and the Apple App Store. These SDKs contain malicious code used by developers to generate revenue, enabling device infection. SparkCat uses OCR technology to search for crypto wallet recovery phrases in images stored on infected devices. It remains unclear whether this malware was intentionally embedded by developers or introduced through a supply chain attack.

Spread of SparkCat Malware

Around 242,000 devices have been infected by SparkCat malware, primarily targeting Android and iOS users in Europe and Asia. The malware scans images for crypto wallet recovery phrases to steal digital assets. This highlights the significant vulnerability of app distribution platforms.

Recommendations for Protection from SparkCat

Kaspersky advises developers to inspect their SDKs and users to avoid storing sensitive data in photo galleries, instead using secure password managers. Users are also advised to remove suspicious apps, lock down their wallets, and, if possible, shift to hardware wallets for added security.

The discovery of SparkCat malware underscores the importance of cybersecurity awareness and vigilance among users and developers, showcasing how vulnerabilities can be exploited to steal digital assets.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Three Reasons Why RLUSD Cannot Replace XRP, According to Shah

chest

Three reasons why RLUSD cannot serve as a universal routing asset like XRP, according to Sagar Shah.

user avatarEmily Carter

Shah Explains the Distinction Between RLUSD and XRP Using a Playground Analogy

chest

Shah uses a playground trading analogy to illustrate the different roles of RLUSD and XRP in facilitating trades.

user avatarLucas Weissmann

Evernorth's Sagar Shah Clarifies Roles of RLUSD and XRP

chest

Sagar Shah, Chief Business Officer of Evernorth, clarifies that RLUSD is a digital dollar while XRP serves as a neutral routing asset for cross-asset settlement.

user avatarFilippo Romano

Hyperliquid Overtakes Solana in Market Valuation

chest

Hyperliquid has recently surpassed Solana in fully diluted valuation, highlighting the rise of revenue-generating chains in the cryptocurrency market.

user avatarTomas Novak

Qivalis Consortium Secures Support for Europe-Pegged Stablecoin Initiative

chest

The Qivalis consortium has secured support from 37 European banks for a Europe-pegged stablecoin initiative to enhance the competitiveness of Europe's digital assets market.

user avatarKaterina Papadopoulou

European Commission Initiates Consultation on Crypto Regulation

chest

The European Commission has launched a consultation to review the EU's regulatory framework on crypto assets, known as the Markets in CryptoAssets Regulation (MiCA), to gather feedback from stakeholders and the public.

user avatarMaya Lundqvist

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.