Technology
- Home
- Technology
- News
iOS App Store apps with screenshot-reading malware found for the first time
Apps distributed through both Apple and Google’s app stores are hiding malicious screenshot-reading code that’s being used to steal cryptocurrency, the cybersecurity software firm Kaspersky reported today. It’s the “first known case” of apps infected with mal…

Published 5 months ago on Feb 11th 2025, 10:00 am
By Web Desk

Apps distributed through both Apple and Google’s app stores are hiding malicious screenshot-reading code that’s being used to steal cryptocurrency, the cybersecurity software firm Kaspersky reported today. It’s the “first known case” of apps infected with malware that uses OCR tech to extract text from images making it into Apple’s App Store, according to a blog post detailing the company’s findings.
Kaspersky says it discovered the code from this particular malware campaign, which it calls “SparkCat,” in late 2024 and that the frameworks for it appear to have been created in March of the same year.
On iOS and in some Android instances, the malware works by triggering a request to access users’ photo galleries when they attempt to use chat support within the infected app. Once permission is granted, it uses Google OCR tech, which lets it decipher text found in photos, to look for things like screenshots of crypto wallet passwords or recovery phrases. The software then sends any images it finds back to the attackers, who can then use the info to access the wallets and steal crypto.
Kaspersky says it can’t “confirm with certainty the infection was a result of a supply chain attack or deliberate action by the developers.” The company names two AI chat apps that seem to have been created for the campaign and appear to still be available on the App Store, called WeTink and AnyGPT. Additionally, Kaspersky found the malicious code in a legitimate-seeming food delivery app called ComeCome, which you can also still download.
Neither Apple nor Google immediately responded to The Verge’s request for comment.

Blast in Bajaur, four including AC martyred
- an hour ago

Extreme heat in Britain, Europe, mercury reaches 46 in Portugal
- 3 hours ago

Taxes on more than 40 items reduced
- 15 minutes ago

Google’s carbon emissions just went up again
- 2 hours ago

SC decision: ECP issues notification to restore reserved seats
- 25 minutes ago

Google quietly introduced precise Bluetooth tracking on the Pixel Watch 3
- 2 hours ago

Apna Ghar, Apni Chhat Project: Construction of over 50,000 houses completed in Punjab
- 3 hours ago

Air Chief Marshal Zaheer Babar meets US civil, military officials
- 4 hours ago

Rain predicted in Karachi from July 8 to 11
- 4 hours ago

PM satisfied with FBR's performance
- 2 hours ago

NEPRA reduces basic power tariff
- 3 hours ago

M3gan 2.0 is a fun upgrade that’s a little too self-aware
- 2 hours ago
You May Like
Trending