Cybersecurity firm Kaspersky has warned a newly discovered malware known as Sparkkitty, who steals photos from infected devices in hopes of finding crypto seed phrases.
Kaspersky Analysts Sergey Puzan and Dmitry Kalinin Says In a report on Monday sparkkitty targets both iOS and Android devices by filing some of the apps in the Apple App Store and Google Play.
When a device is infected, malicious software accidentally steals all images in the photo gallery.
“While we suspect the main purpose of the attacks is to find screenshots of crypto wallet bone bone phrases, other sensitive data may also be present in stolen images.”
Malm apptors are dedicated to crypto themes
Two apps used to deliver the malware found by Kaspersky dedicated to crypto. A known as 币 coin, who shops itself as a Crypto Information Trackeris in the App Store.
The second is Soex, a messaging app with “Crypto Exchange features” on Google Play.
“This app has been uploaded to Google Play and has been installing more than 10,000 times. It’s still available in the store at this research time. We know on Google about it, and they deleted the app from the store,” Puzan and Kalinin said.
The analysts also discovered the chances of sparkkitty delivered through casino apps, adult -themed games and malicious clons of Tiktok.
Sparkcat’s little brother
Malware is similar to sparkcat, identified during a Sinpersky Investigation in January. Malware examines photos of users to find phrases in crypto wallet recovery.
Both versions of malware It is likely from the same resource, Puzan and Kalinin said, as they share similar features and include similar file paths from attack systems.
“While not complex or concepts, this campaign continues from at least to the beginning of 2024 and brings a significant threat to users,” Puzan and Kalinin said.
“Unlike the previously discovered Sparkcat Spyware, this malware was not selected about which pictures were stealing from the gallery.”
Related: Hackers sell fake phones with malware surprisingly malware
Southeast Asia and China’s main target
The main targets of this malware campaign are users in Southeast Asia and China, based on Kaspersky’s findings, because infected apps include various Chinese gambling games, Tiktok and adult games.
“Judging by the resources of distribution, this spyware mainly targets users in Southeast Asia and China,” Puzan and Kalinin said.
“However, it has no technical limitations that will prevent it from attacking users in other regions,” they added.
Magazine: History suggests Bitcoin taps of $ 330k, Crypto ETF odds hit 90%: Hodler’s Digest, June 15 – 21
