A new malware strain named SparkKitty has been detected targeting both iOS and Android devices by stealing screenshots containing cryptocurrency wallet seed phrases and other private information. The malware is distributed through fake crypto-themed apps available on the App Store and Google Play, including apps such as “币coin” and “SOEX,” the latter having over 10,000 installs before removal. SparkKitty operates stealthily by infiltrating devices via modded utility, finance, casino, and adult apps, as well as counterfeit versions of popular apps like TikTok. Security firm Kaspersky has been among the first to warn about this threat, highlighting its focus on extracting images that reveal wallet credentials. The malware is part of a broader wave of mobile spyware and trojans proliferating across Asia, which also includes fake dating, social, banking, and finance apps that steal sensitive user data such as photos, contacts, SMS messages, and banking information. This emerging threat underscores ongoing cybersecurity challenges for mobile users, especially those involved in cryptocurrency transactions.