Several apps on the app store and google play store we found to be infected with a crypto stearer malware by Security Researchers at Kaspersky. These Applications Reportedly Included A Malicious Software Development Kit (SDK) That was designed to use optical character recognition (Ocr) to Steal “Crypto Wallet Recovery Phrasses” Red on a user’s smartphone. It’s also win noting that this is the first time that apps with cryptocurrency stealing malware has been detected on Apple’s app store.
Sparkcat infected apps detected crypto wallet recovery phrases stored using screenshots
In a detailed technical report published on Thursday, The Researchers Said That At Least 18 Android Applications Were Infected With The Malicious Sparkcat Sdk, Whilee The Malicious Framework was foun Re The Cumulative Download Count on Android Smartphones was over 2.42 Lakh, according to the results.
Two of the infected apps on the play store (left) and app store
Photo Credit: Kaspersky
Some of the infected applications appeared to be legitimate, while others (Specifically Messaging Apps Equipped With Ai Features) The report. Meanwhile, kaspersky said that some of the infected android apps we still available to download via the play store at the time of publishing its report.
However, the researchers say that they cannot confirm whether the apps were infected by the developers on Purpose, or whether they were impacted by a supply chain attack. Apple and Google Have Yet to Publicly comment on the Detection of these apps on their respective app stores.
Once installed on a user’s device, these Malicious apps would use a ocr technology to detect and extract text from images stored on the handset. Once the app detects a recover phrase for a cryptocurrency wallet, it would upload the picture to an amazon cloud server and send a message to the attacker’s server to the notified a message with a message with.
While Google and Apple Have Removed Most of the apps detected by kaspersky, users who have downloaded them will need to manually uninstall these applications. Meanwhile, It’s Worth Storing Recovery Phrases for Crypto Wallets and Accounts in a Password Manager, or an application that stores encrypted notes. This is Considerably Safer Than Keeping Screenshots that are easily accessible to apps that have been granted the ‘storage’ or ‘camera roll’ permission.
For the latest tech news and reviews, follow gadgets 360 on XFacebook, Whatsapp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, Follow our in-House Who’Shat360 on Instagram and YouTube.
Asus Zenfone 12 Ultra with Snapdragon 8 Elite Chip, 5,500mAh Battery Launched: Price, Specifications
