New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images
Summary
A new variant of the SparkCat malware has been found in legitimate-appearing apps on both the Apple App Store and Google Play Store. This trojan, previously discovered over a year ago, can steal users' cryptocurrency wallet recovery phrases by capturing images of them.
IFF Assessment
FOE
The discovery of a new malware variant capable of stealing sensitive cryptocurrency recovery phrases poses a direct threat to users and their digital assets.
Defender Context
Defenders should be aware of this evolving malware and emphasize to users the critical importance of never storing recovery phrases insecurely, especially on mobile devices. Vigilance in scrutinizing app permissions and only downloading from trusted sources remains paramount.