Kaspersky’s recent findings on the evolution of mobile malware in 2024 have shed light on a concerning trend of increased cyber threats targeting mobile devices. The security firm reported that a staggering 33.3 million attacks involving malware, adware, or unwanted mobile software were blocked by their products throughout the year.
Adware remained the dominant threat in the mobile landscape, accounting for 35% of total detections. Kaspersky’s security network identified 1.1 million malicious and potentially unwanted installation packages, with nearly 69,000 associated with mobile banking Trojans. This highlights the significant risk posed by these malicious programs to mobile users.
The report also pointed out several new and alarming trends in mobile malware. One such finding was a new distribution scheme for the Mamont banking Trojan, targeting Android users in Russia. Attackers utilized social engineering tactics to lure victims with discounted products and then delivered malware disguised as shipment tracking apps.
Furthermore, researchers uncovered a new NFC banking scam in the Czech Republic, where cybercriminals used phishing websites to spread malicious modifications of the legitimate NFCGate app. This scheme tricked users into exposing their bank card details via NFC connection, enabling fraudsters to carry out unauthorized transactions.
Another noteworthy discovery was the SparkCat SDK implant, which began spreading in March 2024. This malware, found in several Google Play apps, was designed to exfiltrate images from device galleries, with a particular focus on cryptocurrency wallet recovery phrases. Impressively, a variant of this implant even infiltrated Apple’s App Store, making it the first known OCR malware to bypass Apple’s stringent security measures.
The mobile threat landscape also saw an increase in preinstalled malicious apps, including the detection of the LinkDoor backdoor (also known as Vo1d) on Android-powered TV set-top boxes. This malware, embedded in a system application, could execute arbitrary code and install additional malicious packages.
While the overall number of unique malware and unwanted software installation packages has been decreasing over the years, the rate of decrease has slowed. Of particular concern is the persistent increase in mobile banking Trojan activity, despite the reduction in unique installation packages. This underscores the growing threat to mobile devices and the importance of robust security measures and user awareness.
As cybercriminals continue to evolve and sophisticate their tactics, it is crucial for mobile users to stay vigilant and utilize comprehensive mobile security solutions to protect themselves against these growing threats. The need for proactive cybersecurity measures has never been more critical, especially as mobile devices become increasingly attractive targets for malicious actors.
In conclusion, Kaspersky’s report highlights the evolving landscape of mobile malware and emphasizes the urgency of implementing strong security measures to safeguard mobile devices against cyber threats. Awareness, vigilance, and proactive defense strategies are essential in combating the escalating risk posed by mobile malware in today’s digital age.