Apple and Google removed over 20 apps from their app stores after researchers discovered that these apps were designed to steal data.
According to Kaspersky, the malware called "SparkCat" has been active since March 2024. It was first found in a food delivery app used in the United Arab Emirates and Indonesia, but later discovered in 19 other unrelated apps. These apps were downloaded more than 242,000 times in total.
The malware scans the user’s device screen for visible text and attempts to find recovery codes for cryptocurrency wallets in the photo gallery. Once the attackers obtain these codes, they can gain full control of the wallet and steal the funds. The malware can also steal personal information, such as messages and passwords.
After the researchers reported the issue, Apple and Google immediately removed these apps from their stores. Google confirmed that Android users were protected from this malware.
A Kaspersky spokesperson also mentioned that the malware could be found not only on official app stores but also on unofficial websites and stores.
