Kaspersky’s latest report on mobile malware evolution reveals a concerning landscape of cyber threats in 2024.
The security firm’s products blocked a staggering 33.3 million attacks involving malware, adware, or unwanted mobile software throughout the year.
This translates to an average of 2.8 million attacks per month, highlighting the persistent and evolving nature of mobile threats.
Adware remained the most prevalent mobile threat, accounting for 35% of total detections.
The report identified 1.1 million malicious and potentially unwanted installation packages, with nearly 69,000 associated with mobile banking Trojans.
This data underscores the diverse array of threats facing mobile users, from intrusive advertising to sophisticated financial malware.
New Distribution Schemes and Emerging Threats
The year 2024 saw the emergence of novel attack vectors and distribution methods.
A notable discovery was a new scheme for spreading the Mamont banking Trojan, which targeted Android users in Russia.
The attackers employed social engineering tactics, luring victims with discounted products and eventually delivering malware disguised as a shipment tracking app.
Another significant development was the detection of the SparkCat SDK implant, which began proliferating as early as March 2024.
This malicious software, found in several apps on Google Play, was capable of exfiltrating images from device galleries based on specific keywords or dictionaries.
The threat primarily targeted users in the UAE, Europe, and Asia, with a focus on stealing recovery phrases for cryptocurrency wallets.
Banking Trojans on the Rise
While the overall number of unique malware installation packages declined, banking Trojans showed a marked increase in activity.
The Mamont family of banking Trojans emerged as a particular concern, ranking fourth in the list of most frequently detected mobile malware types.
These Trojans typically target users’ funds through SMS or USSD requests, often masquerading as legitimate applications.
The persistence of banking Trojans, despite a decrease in unique installation packages, suggests a shift in cybercriminal tactics.
Attackers appear to be focusing on distributing existing malware more widely rather than developing new variants, potentially indicating a more efficient and targeted approach to compromising mobile devices and financial data.
As mobile devices continue to be integral to daily life and financial transactions, the evolving threat landscape underscores the critical need for robust security measures and user awareness.
The findings from Kaspersky’s report serve as a stark reminder of the ongoing challenges in mobile cybersecurity and the importance of staying vigilant against increasingly sophisticated attack methods.
