TechFlow news, February 5 — According to a report by cybersecurity firm Kaspersky Labs, a malicious software named SparkCat is scanning users' photos via application development kits on Google Play Store and Apple App Store to steal cryptocurrency wallet recovery phrases.
The malware has been active since March 2024, with an estimated 242,000 downloads, primarily targeting Android and iOS users in Europe and Asia. Using optical character recognition (OCR) technology, the malware searches for specific keywords within images, enabling it not only to steal cryptocurrency wallet mnemonic phrases but also to extract other personal data from screenshots.




