Kaspersky warns vs crypto-stealing apps

Filipino smartphone users are at risk from a new mobile Trojan that hides in fake crypto and gambling apps, global cybersecurity firm Kaspersky warned.

In a report on Thursday, Kaspersky said the malware, called SparkKitty, targets iOS and Android devices and steals photos and device information. It has been found in trojanized versions of TikTok and crypto apps distributed through the App Store, Google Play and scam websites.

The company said the campaign appears aimed at stealing cryptocurrency, with users in Southeast Asia, China and the Philippines potentially affected. Kaspersky has reported the malicious apps to Apple and Google.

Fake sites used

“One of the vectors for the Trojan’s distribution turned out to be fake websites where the attackers tried to infect the victims’ iPhones,” said Kaspersky malware expert Sergey Puzan. He said the attackers used legitimate developer tools to sideload infected apps, such as a fake TikTok that linked to a suspicious store accepting only crypto.