A freshly emerged malicious software called SparkKitty poses a threat to mobile devices by attempting to breach cryptocurrency wallets. Instead of directly accessing the wallet information, it scours through a user’s photo library in search of seed phrases to pilfer.
More recently, mobile devices have been affected by malware that infiltrated them via corrupted applications. These apps contained various enticing software designed to attract cryptocurrency users. Fortunately, the removal of many methods for SparkKitty’s attacks has been facilitated by the moderation efforts within app stores.
How SparkKitty Targets Crypto Wallet Apps
As a crypto investor, I’ve just learned that a well-known security company, Kaspersky, has finally unmasked a newly discovered malware following several months of surveillance on various mobile platforms.
Back in February, our company uncovered a past version of this malware called SparkCat. Following that discovery, the malicious creators disguised this trojan within newly developed applications.
Our team discovered a covert Trojan named SparkKitty, which is capable of affecting both iOS and Android devices. This malicious software secretly takes pictures and device information from compromised phones, sending the data back to its creators. The Trojan was concealed within apps related to cryptocurrency, gambling, and even a modified version of an existing app.
— Kaspersky (@kaspersky) June 24, 2025
The comprehensive report from the company indicates that the malicious software in question predominantly aims at infiltrating cryptocurrency users, with a particular focus on those residing in China and Southeast Asia.
Cybercriminals sneakily inserted SparkKitty into various applications dealing with cryptocurrencies, including price monitors and chat platforms that facilitate crypto purchases. An application called SOEX, which fell victim to this intrusion, was downloaded more than 10,000 times before it was taken down.
In addition to its original functions, SparkKitty’s operators expanded their repertoire to develop casino applications, mature content websites, and imitation TikTok platforms. If a user unknowingly downloaded an infected application, the malware would not immediately begin scouring for cryptocurrency.
Instead, the app seems to operate as expected, requesting access to a user’s photos. Even after being granted this permission, it carries on functioning in a regular manner.
Essentially, what this malware does is continuously search through image files for traces of cryptocurrency recovery phrases (seed phrases), and it verifies the affected device regularly to ensure the seed phrase is still there.
According to Kaspersky’s team, there are several indications suggesting that SparkKitty might be an enhanced version of SparkCat. For instance, they have similar debug symbols, coding structures, and even a handful of affected mobile applications using these vectors.
Instead, it’s worth noting that SparkKitty surpasses SparkCat in ambition. While the original malware primarily targeted cryptocurrency security, the updated variant expands its reach to a broader spectrum of sensitive data.
A new malware called #SparkKitty has been detected that steals all photos from affected iOS and Android devices while looking for cryptocurrency wallet seed phrases. It is being distributed through the apps “币coin” (App Store) and “SOEX” (Google Play with over 10,000 installs, now removed). Additionally, it has been found in casino applications and adult-related content.
— SlowMist (@SlowMist_Team) June 24, 2025
Nonetheless, SparkKitty’s main priority is still in uncovering seed phrases.
In summary, for users, the most prudent advice is always to avoid storing seed phrases electronically. Avoid taking pictures of them as well.
Lately, there’s been an abundance of fraudulent activities and harmful software posing a threat to your password security. Such threats enable hackers to seize all your cryptocurrency. To avoid falling victim, be cautious about granting access to suspicious apps on your devices. However, safeguarding your seed phrase is crucial and even more essential.
Read More
- SHIB PREDICTION. SHIB cryptocurrency
- SOL PREDICTION. SOL cryptocurrency
- ATOM PREDICTION. ATOM cryptocurrency
- FARTCOIN PREDICTION. FARTCOIN cryptocurrency
- Gold Rate Forecast
- USD RUB PREDICTION
- Silver Rate Forecast
- Top gainers and losers
- EUR PKR PREDICTION
- BCH PREDICTION. BCH cryptocurrency
2025-06-25 01:54