Apple and Google have taken swift action to remove a batch of malicious apps from their respective app stores, following a report from security researchers at Kaspersky. The apps, which were downloaded over 242,000 times, contained a data-stealing malware known as SparkCat, which has been active since March 2024.

The SparkCat malware was initially discovered in a food delivery app used in the United Arab Emirates and Indonesia. However, further investigation revealed that the malware had spread to 19 other unrelated apps, all of which were available for download on Google's Play Store. The apps were cumulatively downloaded over 242,000 times, putting a large number of users at risk of having their personal data and cryptocurrency wallets stolen.

The SparkCat malware uses optical character recognition (OCR) technology to scan image galleries on victims' devices for keywords, allowing it to find recovery phrases for cryptocurrency wallets across various languages, including English, Chinese, Japanese, and Korean. This enables attackers to gain complete control over a victim's wallet and steal their funds. Additionally, the malware can extract personal information from screenshots, such as messages and passwords.

Upon receiving the report from Kaspersky, Apple promptly removed the compromised apps from the App Store, followed by Google. A Google spokesperson confirmed that all identified apps have been removed from Google Play, and the developers have been banned. The spokesperson also noted that Android users were protected from known versions of this malware through the in-built Google Play Protect security feature.

While the reported apps have been removed from the official app stores, Kaspersky's telemetry data suggests that the malware was also available from other websites and non-official app stores. This highlights the importance of users being cautious when downloading apps, even from official sources, and regularly updating their devices with the latest security patches.

The removal of these malicious apps serves as a reminder of the ongoing battle against cyber threats and the importance of collaboration between tech companies, security researchers, and users to stay one step ahead of attackers. As the threat landscape continues to evolve, it is essential for users to remain vigilant and take proactive measures to protect their personal data and digital assets.