A new threat weighs on the crypto world. According to a recent analysis carried out by Kaspersky, malicious software called “Sparkcat” infiltrates the development kits (SDK) used to create applications available on Google Play Store and Apple App Store. This malware is specially designed to extract Crypto portfolio recovery sentences from images stored on user devices, thus jeopardizing the safety of their funds.
Your cryptos may be in danger!
Sparkcat works by using optical character recognition (OCR) to analyze the images present on the infected device. He specifically searches for recovery sentences, which are essential to access crypto wallets. Once this information is obtained, the attackers can take total control of the victims of the victims and transfer the funds to their own accounts.
This malware is hidden in the form of an analysis module named Spark, integrated into various applications. It uses a encrypted configuration file hosted on Gitlab to receive commands and operational updates. In addition, the flexibility of Sparkcat allows him to steal not only crypto recovery sentences, but also other personal data present in the user gallery, such as the content of messages or passwords visible on catches screen.
Since its appearance in March 2024, Sparkcat has been downloaded about 242,000 times, targeting mainly Android and iOS users in Europe and Asia. Infected applications vary, some being legitimate, such as food delivery services, while others are specifically designed to attract victims, such as false messaging applications with artificial intelligence features.
How to protect yourself against Sparkcat?
To protect yourself against this threat, Kaspersky recommends Users do not store sensitive information, such as crypto recovery sentences or passwords, in the form of images or screenshots on their devices. It is advisable to use secure password managers to keep this crucial information. In addition, it is essential to remove any suspicious or infected application and keep up to date with the latest security updates.
This discovery therefore underlines the importance of increased vigilance when downloading applications. Even if these come from official sources, the adoption of good security practices to protect your Crypto data is essential.
Maximize your Cointribne experience with our 'Read to Earn' program! For each article you read, earn points and access exclusive rewards. Sign up now and start accumulating advantages.
