According to Kaspersky’s “2024 Mobile Malware Threat Landscape” report, banking Trojan attacks targeting smartphones increased by 196% in 2024 compared to the previous year.
Kaspersky announced that the report was shared with the public at the Mobile World Congress in Barcelona. The findings reveal that cybercriminals have shifted their attack strategies by massively distributing malware to steal banking credentials.
Surge in Banking Trojan Attacks
The number of recorded banking Trojan attacks on Android devices surged from 420,000 in 2023 to 1.24 million in 2024. Globally, more than 33.3 million mobile malware and unwanted software attacks were detected, with an average of 2.8 million attacks blocked every month.
Cybercriminals exploit SMS and messaging apps to distribute malicious links, tricking users into downloading harmful software. They also use hacked accounts to make scams more convincing and manipulate trending news events to deceive victims.
Most Common Mobile Malware Types
Although banking Trojans are among the fastest-spreading threats, they ranked fourth, affecting 6% of attacked users. The most common threats were:
- AdWare (Advertising Software): 57%
- Generic Trojans: 25%
- RiskTools: 12%
- Banking Trojans: 6%
One of the most frequently encountered threats last year was Fakemoney, a malware disguised as fake investment and payment apps. Additionally, Triada Trojans, hidden within modified versions of WhatsApp, posed a serious risk by executing malicious modules.
How to Protect Against Mobile Threats
Kaspersky experts provided the following recommendations to protect against mobile malware:
- Download apps only from official stores (Google Play, Apple App Store), but remember that these platforms are not 100% secure.
- Carefully check app reviews and only use links redirected from official websites.
- Review user permissions, especially high-risk ones like accessibility services, before granting access.
- Regularly update your operating system and essential apps.
- Use reliable security software to detect and block malicious activities.
Kaspersky Expert’s Warning
Kaspersky Security Expert Anton Kivva warned that fraudsters are now focusing on mass-distributing existing malware rather than creating new malicious software. Emphasizing the importance of cybersecurity awareness, Kivva stated, “No one is completely safe from sophisticated scams designed to steal banking credentials. Cyber literacy is now crucial for individuals of all ages.”
Source: CNBC-e/Prepared by: İlayda Gök