Apple Removed Apps Infested With Screen Reading Malware – MacRumors

Information on new “SparkCat” malware infesting a small number of iOS apps was shared yesterday by Kaspersky, and shortly after the report came out, Apple pulled the apps from the App Store.Some of the apps that had hidden malware included ComeCome, WeTink, and AnyGPT. 11 apps were removed in total, but when removing the apps, Apple found another 89 with the same code that had been previously rejected or removed from the ‌App Store‌ for violating Apple’s fraud policies. When an app is removed for fraud, Apple terminates the associated developer account.As outlined by Kaspersky, the apps used a malicious framework with OCR capabilities designed to suss out sensitive information in images and screenshots stored on iPhones. Recovery phrases for crypto wallets were a specific target, with attackers aiming to steal bitcoin and other cryptocurrency, but the malware could target other phrases like passwords.By default, Apple blocks access to a user’s photos, so the apps would have needed express user consent to operate. If given permission to access a Photo Library, the apps could scan through the images to look for key phrases outlined by the attackers. If an image with a relevant phrase was found, it was uploaded to a remote server. Kaspersky found that the malware was likely targeting iOS users in Europe and Asia.It is worth noting that Apple added granular control over the images that an app is able to access back in iOS 14, and there is an option to provide access to a limited number of images rather than an entire library. It is a good idea to avoid apps that seem sketchy, and to refrain from giving an app access to all of your images.Apple also provides an App Privacy Report that outlines all of the instances when an app accesses sensitive data like location, images, camera, and microphone. The App Private Report can be found in the Privacy section of the Settings app.Get weekly top MacRumors stories in your inbox.New visual intelligence features for iPhone 16 models, tweaks for notification summaries, and more.Apple Intelligence is what Apple is calling its artificial intelligence feature set, previewed at WWDC in June 2024. Here’s everything we know.Image Playground is Apple’s dedicated image creation app that can build cartoon-like pictures based on text descriptions.
If you’re experiencing issues with iPhone Mirroring, follow these steps to get it working again.M4 chip update expected, but no design changes.Chip update and other spec bumps for Apple’s entry-level iPad.The end of the iPhone Home button as Apple shifts its final model to an all-display front with a notch and Face ID.Apple appears to be skipping the M3 generation and waiting to launch an M4 Mac Studio in mid-2025.4 hours ago by Joe Rossignol5 hours ago by Joe Rossignol5 hours ago by Joe Rossignol1 day ago by Joe Rossignol1 day ago by Tim Hardwick MacRumors attracts a broad audience of both consumers and professionals interested in the latest technologies and products. We also boast an active community focused on purchasing decisions and technical aspects of the iPhone, iPad, Mac, and other Apple platforms.

Source: https://www.macrumors.com/2025/02/06/apple-removed-screen-reading-malware-apps/