Kaspersky has uncovered SparkKitty, a new malware targeting crypto users by stealing photos from infected iOS and Android devices to capture screenshots of wallet seed phrases. The malware spreads through apps on Apple App Store and Google Play, including crypto-themed apps like 币coin and SOEX, as well as casino, adult, and TikTok clone apps. Once installed, SparkKitty indiscriminately steals all images, using OCR to identify sensitive crypto data. The campaign has been active since early 2024, primarily affecting users in Southeast Asia and China, but with potential global reach. Google and Apple have removed the malicious apps and banned the developers.

#Hashtags

#Cybersecurity

#CryptoSecurity

#MalwareAlert

#SparkKitty

#BlockchainSafety