A report from the cloud security company Zscaler has claimed that hundreds of malicious applications were hosted on the Google Play Store , collectively racking up over 42 million installs. The findings, published in Zscaler’s ThreatLabz 2025 Mobile, IoT, and OT Threat Report, says that there’s a global surge in Android malware, with India identified as the world’s top target for mobile attacks.
The report, released recently is based on data collected from the Zscaler cloud between June 2024 and May 2025.
Mobile malware increases by 67%
Zscaler’s ThreatLabz researchers say that they have identified 239 malicious applications that were hosted on the Google Play Store, capitalising on the demand for hybrid work tools. The apps were frequently disguised within the "Tools" category as productivity and workflow utilities, leading to 42 million downloads globally, the report claimed.
The findings reflect a continuous increase in digital risk, with Android malware transactions seeing a 67% year-over-year increase. This rise is driven by the sustained use of spyware and banking malware.
India leads in mobile attack volume
Globally, mobile threats are heavily concentrated in three major regions, but India bears the largest brunt of the activity. India accounted for 26% of all observed mobile attacks, experiencing a 38% increase in mobile threat attacks compared to the previous year.
In contrast, the United States remains the epicenter for IoT (Internet of Things) attacks, accounting for 54% of that activity, followed by Hong Kong (15%).
The report emphasises that cybercriminals are pivoting to sectors where attacks yield maximum impact:
Energy sector: The energy sector experienced a substantial 387% increase in attacks compared to the previous year, highlighting an escalating threat to critical infrastructure.
Manufacturing and transportation: These two sectors remain the most frequently targeted verticals in the IoT landscape, together accounting for over 40% of total IoT malware incidents. The report also said that hackers are abandoning card-focused fraud in favour of mobile payments.
The report, released recently is based on data collected from the Zscaler cloud between June 2024 and May 2025.
Mobile malware increases by 67%
Zscaler’s ThreatLabz researchers say that they have identified 239 malicious applications that were hosted on the Google Play Store, capitalising on the demand for hybrid work tools. The apps were frequently disguised within the "Tools" category as productivity and workflow utilities, leading to 42 million downloads globally, the report claimed.
The findings reflect a continuous increase in digital risk, with Android malware transactions seeing a 67% year-over-year increase. This rise is driven by the sustained use of spyware and banking malware.
India leads in mobile attack volume
Globally, mobile threats are heavily concentrated in three major regions, but India bears the largest brunt of the activity. India accounted for 26% of all observed mobile attacks, experiencing a 38% increase in mobile threat attacks compared to the previous year.
In contrast, the United States remains the epicenter for IoT (Internet of Things) attacks, accounting for 54% of that activity, followed by Hong Kong (15%).
The report emphasises that cybercriminals are pivoting to sectors where attacks yield maximum impact:
Energy sector: The energy sector experienced a substantial 387% increase in attacks compared to the previous year, highlighting an escalating threat to critical infrastructure.
Manufacturing and transportation: These two sectors remain the most frequently targeted verticals in the IoT landscape, together accounting for over 40% of total IoT malware incidents. The report also said that hackers are abandoning card-focused fraud in favour of mobile payments.
You may also like
UFC legend Rampage Jackson's Rome livestream turns chaotic after fake money giveaway
The beautiful European city that's 23C in November with direct flights from the UK
Munir's constitutional coup, a tweak in Zia-ul-Haq's playbook
BBC fans say Tim Davie resignation 'isn't enough' as they make licence fee demand
Moscow busts ISI network's plan to smuggle military tech
