Apple and Google Remove 20 Apps Containing Data-Stealing Malware

Bijay Pokharel, February 11, 2025 0 1 min read

Apple and Google have removed 20 apps from their stores after researchers discovered they contained malware stealing user data for nearly a year.

Security firm Kaspersky found the malware, called SparkCat, active since March 2024. It was first spotted in a food delivery app in the UAE and Indonesia before being found in 19 other apps, with over 242,000 downloads from Google Play.

SparkCat used optical character recognition (OCR) to scan device screens and image galleries, searching for cryptocurrency wallet recovery phrases in multiple languages. This allowed attackers to take over wallets and steal funds. The malware could also extract sensitive data like messages and passwords from screenshots.

Google confirmed it removed all affected apps and banned the developers, while Android users were protected through Google Play Protect. Apple has also pulled the apps but has not commented. Researchers warn that SparkCat may still be available on third-party sites and unofficial app stores.

READ

CISA Warns Medusa Ransomware Has Hit Over 300 Critical Infrastructure Organizations

IT NEWS & UPDATES

Meta to Expand Instagram Teen Accounts in India

MICROSOFT

Microsoft Expands Copilot Bug Bounty Program with Higher Payouts

Bijay Pokharel

Bijay Pokharel is the creator and owner of Abijita.com. He is a freelance technology writer focusing on all things pertaining to Cyber Security. The topics he writes about include malware, vulnerabilities, exploits, internet defense, women's safety and privacy, as well as research and innovation in information security. He is a tech enthusiast, keen learner, rational and cool person in his professional activities and challenges.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Recent Posts

U.S. Bans Chinese AI DeepSeek on Government Devices Over Security Concerns

Telegram CEO Pavel Durov Allowed to Leave France Amid Criminal Investigation

Sunita Williams Set to Return to Earth Tomorrow, March 18

Google’s Gemini AI Can Remove Watermarks—And People Are Noticing

SpaceX Crew-10 Docks at ISS, to Bring Home Sunita Williams, Butch Wilmore This Week

Researcher Develops Free Decryptor for Akira Ransomware on Linux

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Apple and Google Remove 20 Apps Containing Data-Stealing Malware

Bijay Pokharel

Related posts

The Best & Worst States In America For Online Privacy

AT&T Reportedly Paid $370,000 to a Hacker to Delete Stolen Customer Data

75% Increase In Ransomware Attacks Targeting Linux Systems In 2022

Russia Says US Hacked Thousands Of iPhones In Spy Plot

A Comprehensive Cyberbullying Guide For Parents

FIN7 Hacking Group Launches Fake AI Deepnude Sites to Spread Malware

Leave a Reply Cancel reply

Recent Posts

U.S. Bans Chinese AI DeepSeek on Government Devices Over Security Concerns

Telegram CEO Pavel Durov Allowed to Leave France Amid Criminal Investigation

Sunita Williams Set to Return to Earth Tomorrow, March 18

Google’s Gemini AI Can Remove Watermarks—And People Are Noticing

SpaceX Crew-10 Docks at ISS, to Bring Home Sunita Williams, Butch Wilmore This Week

Researcher Develops Free Decryptor for Akira Ransomware on Linux

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.