According to Kaspersky data, these malwares specialized in stealing banking data have jumped by 196% in one year, an alarming increase that underlines the need for increased vigilance in an increasingly connected world.
A rise in malware
The scale of the phenomenon is striking: Kaspersky has recorded 33.3 million incidents related to smartphone malware over the past year. These figures illustrate a strategic shift by cybercriminals, who are now focusing on the wide distribution of the same malicious files rather than constantly creating new software. This approach allows them to maximize their profits by reducing development costs.
Paradoxically, despite their explosion, banking Trojans only represent 6% of global attacks, ranking fourth. At the top of the most common threats is adware (intrusive advertising software), which affects 57% of victims. This software bombards users with incessant advertisements while opening doors to cybercriminals. Unlike a simple nuisance, this Adware can compromise the security of systems, thus facilitating the installation of other, more invasive malware.
Other types of malware, such as RiskTools, play the role of sophisticated spies capable of bypassing security barriers operating systems. Some exploit the accessibility services of smartphones, allowing them to obtain advanced permissions and transform a seemingly innocuous application into a true gateway for a complex attack.
A constantly evolving threat
Mobile devices, once perceived as simple communication tools, have now become the favorite target of cybercriminals. According to a Kaspersky report published at the Mobile World Congress 2025 in Barcelona, attacks aimed at stealing banking data on smartphones have tripled in 2024 compared to The number of malware attacks has increased significantly since the previous year. This phenomenon is explained by the evolution of the techniques used by hackers and their ability to infiltrate millions of devices around the world.
The threat landscape is becoming increasingly sophisticated, with a marked increase in attacks by Banking Trojans. These malwares integrate into applications downloaded by unsuspecting users, including from well-known platforms such as Google Play and the Apple App Store. Once installed, they discreetly collect banking credentials and transmit this data to criminal networks.
Massive and organized distribution
Cybercriminals leverage large-scale distribution strategies to spread their malware. This approach allows them to extend their reach to different demographic and geographic segments while maximizing the impact of their attacks. Among the most commonly used techniques, the reuse and modification of popular versions of legitimate applications, such as WhatsApp, is a worrying trend.
The Triada Trojan, frequently hidden within these altered versions, can download and execute other malicious modules. In addition to displaying unwanted ads, it can also steal sensitive personal information or allow the installation of even more dangerous software.
0 Comments