Overview
- ThreatLabz identified 239 malicious Android apps on Google Play that were downloaded about 42 million times between June 2024 and May 2025.
- Mobile malware activity increased 67% year over year, with adware rising to 69% of Android detections as Joker declined to 23%.
- Attackers are shifting from card fraud to social engineering that targets mobile payments and MFA through phishing, smishing, and SIM swapping.
- Energy-focused IoT/OT attacks jumped 387% year over year, while manufacturing and transportation each accounted for about one fifth of observed IoT incidents.
- Mirai drove roughly 40% of blocked IoT payloads, the United States received 54% of IoT malware traffic, and India led mobile attack traffic at 26%.