More than 200 malicious apps found lurking on the Google Play store, threatening millions of users.

This figure is just the tip of the iceberg, suggesting that the true scale of the problem could be much larger. Installing these malicious apps can lead to serious consequences such as stealing personal and financial data, or turning a user’s device into a tool for other cyberattacks.

Cybercriminals are constantly looking for new ways to infiltrate users' mobile devices. One of the most common methods today is to trick users into downloading malicious applications disguised as useful applications.

Mobile phones have become the gateway connecting people to the digital world. With the rate of users accessing the internet via mobile devices reaching up to 96.5%, owning a smartphone has become more popular than ever.

However, this popularity also brings with it increasing cybersecurity risks. Cybercriminals have quickly realized the potential to exploit the large number of mobile users and are constantly looking for more sophisticated ways to attack, aiming to steal personal data, finances or even remotely control devices.

Zscaler’s latest report paints an alarming picture of the current cybersecurity landscape. Based on the blocking of more than 20 million malicious transactions, the report shows that attacks on the banking sector have grown exponentially, with a 29% increase in just one year.

Particularly worrying is the explosion of mobile spyware, with a staggering 111% increase, suggesting that cybercriminals are increasingly targeting the financial information of consumers and businesses.

“Cyberattacks are increasingly being carried out with the primary goal of making illicit profits,” Zscaler stressed.

It is an alarming fact that cyber attacks today are becoming increasingly sophisticated, with the ability to bypass even supposedly solid security measures like multi-factor authentication (MFA).

Financially motivated attackers are constantly looking for new vulnerabilities and exploiting new techniques to steal sensitive information. They often use sophisticated phishing methods such as creating fake websites that look exactly like the login pages of banks, social networks or e-wallets, to trick users into providing personal information and passwords.

QR codes, once known as a convenient tool for quick access to information, have now become a dangerous tool in the hands of hackers. They take advantage of QR codes to secretly distribute malware to mobile devices.

A prime example is the Anatsa malware, which has attacked more than 650 financial institutions worldwide. By embedding malware into QR codes, Anatsa has infiltrated banking applications, stolen account information, and made unauthorized transactions.

Cybersecurity researchers have sounded the alarm about an increasingly common form of attack: hackers are exploiting users' trust in online meeting platforms such as Skype, Zoom and Google Meet to spread malware.

Even large, reputable app stores like the Google Play Store are not completely immune to malware. Researchers have discovered more than 200 malicious apps that have slipped through Google’s review system and been uploaded to the store.

What’s more worrying is that these malicious apps have attracted nearly 8 million downloads, indicating the widespread nature of the threat. While Google has confirmed that the apps have been removed, the incident highlights the vulnerability of app stores and calls for users to remain vigilant.

Of particular note is the Joker malware family, which accounted for 38 percent of all detected malicious applications. Joker, a wireless application protocol (WAP) malware, operates by silently subscribing users to premium paid services without their consent, leading to unexpected charges and significant financial losses.

The majority of threats, 35%, were related to adware. In addition, 14% of malicious apps were identified as Facestealer, which specializes in stealing Facebook login credentials.

Attackers are exploiting users' trust by disguising the Anatsa (or TeaBot) malware as useful apps like PDF readers, QR codes, or file managers on Google Play, allowing them to easily infiltrate victims' devices.

Trojans are a serious threat to Android users, accounting for 43% of all malware. Particularly dangerous are banking Trojans, with 3.6 million related cases detected by Zscaler.

Researchers have noted a significant decline in Android malware-related activity since June 2023. The number of attacks in May 2024 was only one-third of what it was in June 2023.

According to Zscaler, there are an average of 1.7 million malware attacks targeting the Android operating system each month, based on more than 20 million mobile transactions the company analyzed over the past year.