• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

SparkCat Malware Found in SDKs on Google Play and App Store

user avatar

by Giorgi Kostiuk

a year ago

Cybersecurity experts from Kaspersky have discovered the SparkCat malware hidden in SDKs on Google Play and App Store. It steals crypto wallet recovery phrases using OCR technology, having infected more than 242,000 devices.

Discovery of SparkCat Malware in SDKs

The SparkCat malware was found in SDKs on both Google Play and the Apple App Store. These SDKs contain malicious code used by developers to generate revenue, enabling device infection. SparkCat uses OCR technology to search for crypto wallet recovery phrases in images stored on infected devices. It remains unclear whether this malware was intentionally embedded by developers or introduced through a supply chain attack.

Spread of SparkCat Malware

Around 242,000 devices have been infected by SparkCat malware, primarily targeting Android and iOS users in Europe and Asia. The malware scans images for crypto wallet recovery phrases to steal digital assets. This highlights the significant vulnerability of app distribution platforms.

Recommendations for Protection from SparkCat

Kaspersky advises developers to inspect their SDKs and users to avoid storing sensitive data in photo galleries, instead using secure password managers. Users are also advised to remove suspicious apps, lock down their wallets, and, if possible, shift to hardware wallets for added security.

The discovery of SparkCat malware underscores the importance of cybersecurity awareness and vigilance among users and developers, showcasing how vulnerabilities can be exploited to steal digital assets.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Vitalik Buterin Advocates for AI-Assisted Formal Verification in Cryptocurrency Security

chest

Vitalik Buterin emphasizes the importance of mathematically verified software to protect against AI-assisted cyberattacks.

user avatarLi Weicheng

Ripple's Infrastructure Gains Momentum Amid Market Challenges

chest

Ripple's broader infrastructure business is gaining momentum, with significant growth in its Ripple Prime platform.

user avatarAisha Farooq

Ripple's Cross River Bank Partnership Resurfaces in X Money Initiative

chest

Cross River Bank, a long-time partner of Ripple, has resurfaced in the payments initiative X Money, which is part of Elon Musk's broader ambition to create a global financial super app.

user avatarTenzin Dorje

Charles Hoskinson Faces Accusations of Undermining XRP Growth

chest

Charles Hoskinson, founder of Cardano, has been accused by a Ripple community member of being involved in the ETHgate saga, which allegedly harmed XRP's growth.

user avatarBayarjavkhlan Ganbaatar

David Schwartz Supports John Deaton's Senate Campaign with XRP Donation

chest

Former Ripple CTO David Schwartz has donated an undisclosed amount of XRP to John Deaton's US Senate campaign, signaling support for Deaton's fundraising efforts.

user avatarMohamed Farouk

BarriC Predicts XRP Price Rally Conditions

chest

Crypto pundit BarriC discusses the conditions for XRP to potentially reach significant price levels, emphasizing the need for integration with global financial systems.

user avatarElias Mukuru

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.