• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

SparkCat Malware Found in SDKs on Google Play and App Store

user avatar

by Giorgi Kostiuk

a year ago

Cybersecurity experts from Kaspersky have discovered the SparkCat malware hidden in SDKs on Google Play and App Store. It steals crypto wallet recovery phrases using OCR technology, having infected more than 242,000 devices.

Discovery of SparkCat Malware in SDKs

The SparkCat malware was found in SDKs on both Google Play and the Apple App Store. These SDKs contain malicious code used by developers to generate revenue, enabling device infection. SparkCat uses OCR technology to search for crypto wallet recovery phrases in images stored on infected devices. It remains unclear whether this malware was intentionally embedded by developers or introduced through a supply chain attack.

Spread of SparkCat Malware

Around 242,000 devices have been infected by SparkCat malware, primarily targeting Android and iOS users in Europe and Asia. The malware scans images for crypto wallet recovery phrases to steal digital assets. This highlights the significant vulnerability of app distribution platforms.

Recommendations for Protection from SparkCat

Kaspersky advises developers to inspect their SDKs and users to avoid storing sensitive data in photo galleries, instead using secure password managers. Users are also advised to remove suspicious apps, lock down their wallets, and, if possible, shift to hardware wallets for added security.

The discovery of SparkCat malware underscores the importance of cybersecurity awareness and vigilance among users and developers, showcasing how vulnerabilities can be exploited to steal digital assets.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Solana Price Faces Resistance as Market Conditions Shift

chest

Solana's price struggles to break the resistance level of 98 amid market consolidation, with potential targets of 107 and 117 if successful.

user avatarDiego Alvarez

Myanmar Escalates Crackdown on Crypto Scammers with Execution

chest

Myanmar escalates its crackdown on cryptocurrency scams by reportedly executing individuals involved in fraudulent activities.

user avatarKenji Takahashi

Bitcoin Depot's Leadership Change Amid Financial Struggles

chest

Bitcoin Depot has replaced its CEO as it faces declining revenue and increasing legal pressures.

user avatarMaria Fernandez

South Korea to Introduce New Regulations for Tokenized Securities in July

chest

South Korea is set to introduce new regulations for tokenized securities in July, enhancing investor confidence and promoting the growth of the crypto market.

user avatarMiguel Rodriguez

International Crackdown on Southeast Asia's Online Scams

chest

International law enforcement agencies have arrested over 200 individuals and shut down nine scam centers in Southeast Asia to combat the growing threat of online scams.

user avatarRajesh Kumar

Myanmar Introduces Severe Penalties for Digital Currency Fraud

chest

Myanmar's military government has introduced a severe Anti-Online Fraud Bill targeting digital currency fraud, proposing severe penalties including prison sentences and the death penalty for serious offenses.

user avatarGustavo Mendoza

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.