SparkCat Malware Targets Cryptocurrency Wallets via Fake Apps
/ 1 min read
🪙💔 New SparkCat malware targets cryptocurrency wallets through bogus apps. A malware campaign named SparkCat has emerged, utilizing fake applications on Apple and Google app stores to steal mnemonic phrases linked to cryptocurrency wallets. Researchers from Kaspersky revealed that the malware employs optical character recognition (OCR) to extract images containing recovery phrases from users’ photo libraries and send them to a command-and-control server. The campaign, active since March 2024, has seen over 242,000 downloads and primarily targets users in Europe and Asia. Notably, the malware disguises itself as legitimate apps, making it difficult for users to detect its malicious intent. This incident highlights the critical need for users to carefully vet applications before downloading, even from official sources.
