6 days ago · Kaspersky Threat Research expertise center has discovered a new data-stealing Trojan, SparkCat, active in AppStore and Google Play since at least March 2024. This is the first known instance of optical recognition-based malware appearing in AppStore.

6 days ago · The malware, which we dubbed “SparkCat”, used an unidentified protocol implemented in Rust, a language untypical of mobile apps, to communicate with the C2. Judging by timestamps in malware files and creation dates of configuration files in GitLab repositories, SparkCat has been active since March 2024. A malware SDK in Google Play apps

4 days ago · Depending on the device’s language settings, SparkCat downloads models trained to detect the relevant script in photos, whether Latin, Korean, Chinese, or Japanese. After recognizing the text in an image, the Trojan checks it against a set of rules loaded from its command-and-control server.

5 days ago · A new malware campaign dubbed SparkCat has leveraged a suit of bogus apps on both Apple's and Google's respective app stores to steal victims' mnemonic phrases associated with cryptocurrency wallets. The attacks leverage an optical character recognition (OCR) model to exfiltrate select images ...

5 days ago · Malware that includes code for reading the contents of screenshots has been found in suspicious App Store apps for the first time, according to a report from Kaspersky.. Dubbed "SparkCat," the ...

6 days ago · The SparkCat malware had a built-in capability to filter extracted OCR results using keyword matching, dictionary searches, and word length thresholds. It was designed to specifically target financial information, including recovery phrases in multiple languages such as English, Chinese, Japanese, Korean, and several European languages.

4 days ago · Kaspersky uncovered SparkCat, a malware that scanned phone galleries for crypto recovery phrases hidden in screenshots. The malware hid in food delivery and AI chat apps, infecting up to 242,000 users before being removed from app stores.

5 days ago · Researchers at Kaspersky discovered apps on both Google's Play Store and Apple's App Store that contained malicious frameworks, specifically designed to steal crypto wallet...

6 days ago · SparkCat campaign target crypto wallets using OCR to steal recovery phrases | International Civil Aviation Organization (ICAO) and ACAO Breached: Cyberespionage Groups Targeting Aviation Safety Specialists | Online food ordering and delivery platform GrubHub discloses a data breach |

4 days ago · SparkCat, a dangerous virus, has infiltrated 28 popular apps, posing a significant threat to personal and financial data. This malware affects both Android and iPhone users, highlighting the widespread nature of this digital menace. According to reports, SparkCat has already compromised millions of ...