Global cybersecurity firm Kaspersky has uncovered 26 malicious applications on the Apple App Store masquerading as popular cryptocurrency wallets, including MetaMask, Ledger, Trust Wallet, and Coinbase. The fraudulent apps redirect users to phishing pages that imitate the official App Store, ultimately tricking victims into installing trojanized wallets designed to steal their digital assets. According to Kaspersky Threat Research, the campaign has been active since at least the fall of 2025 and is attributed with moderate confidence to the threat actors behind SparkKitty. Other major wallets mimicked in this campaign include TokenPocket, imToken, and Bitpie. The Attack Vector: From “Stub” Apps …