Kaspersky Finds Fake Crypto Wallet Apps on iPhone App Store

Cybersecurity firm Kaspersky says it found 26 fake crypto wallet apps on Apple’s App Store targeting iPhone users. The fake crypto wallet apps impersonate well-known wallets such as MetaMask, Ledger, Trust Wallet and Coinbase (plus TokenPocket, imToken and Bitpie) by copying names and visual branding. Kaspersky reports that the apps redirect victims to phishing pages that mimic the App Store. Users are then pushed to install a second, trojanized wallet app that can drain funds. The campaign has been active since at least fall 2025 and may be linked to the SparkKitty iOS malware strain. A key new detail in the latest reporting is the use of Apple enterprise developer tools to complete the infection chain: victims are prompted to install a developer profile to bypass App Store restrictions. Kaspersky also notes most malicious distribution was observed in China, but the threat is not region-limited, so users globally may be exposed. All identified apps have been reported to Apple. For crypto traders, this is primarily a wallet security and phishing risk event, not a direct protocol or exchange-market disruption. Expect limited short-term sentiment volatility around affected wallet brands, but no clear fundamental impact on major token prices.