Apple and Google have removed 20 malware-infected apps from their respective app stores, which had been used for data theft for nearly a year. Cybersecurity firm Kaspersky reported that the malware, known as “SparkCat,” had been active since March 2024. The information was first reported by TechCrunch.

Initially, the malware was detected in a food delivery app operating in the United Arab Emirates and Indonesia. However, subsequent investigations revealed its presence in 19 other apps, which had been downloaded over 242,000 times from the Google Play Store.

According to researchers, the malware utilized Optical Character Recognition (OCR) technology to scan images and screenshots stored on users’ devices. This allowed hackers to steal recovery phrases for cryptocurrency wallets, potentially giving them control over users’ digital assets. Additionally, the malware had the capability to steal private messages and passwords.

After receiving reports from cybersecurity experts, Apple removed the malicious apps last week, followed by Google, which deleted the apps from its Play Store and banned the associated developers.

Google spokesperson Ed Fernandez confirmed that Google Play Protect has been safeguarding Android users from this malware. However, Apple has not commented on the matter.

Kaspersky spokesperson Rosemary Gonzalez warned that although the harmful apps have been removed from official app stores, they may still be available on unauthorized websites and third-party app stores. Source: TechCrunch

Total views: 151