Cyberattacks targeting mobile banking users increased significantly in 2025, with Trojan banker attacks on Android smartphones rising by 56% compared with 2024, according to a report by cybersecurity firm Kaspersky.
The findings were revealed in Kaspersky’s report titled “Mobile Malware Evolution,” which highlights the growing threat posed by malware designed to steal user credentials for online banking, digital payment services and credit card platforms.
Trojan banking malware typically spreads through malicious links, messaging applications and compromised webpages, tricking users into installing harmful applications that allow attackers to access financial information.
The report also recorded a sharp rise in new Android Trojan banker installation packages, with 255,090 unique APK files detected globally. Researchers say the rapid increase indicates that these tools are generating substantial profits for cybercriminal networks.
Anton Kivva, malware analyst team lead at Kaspersky, noted that while Trojan banker malware remains the fastest-growing threat, another concerning trend is the rise of preinstalled backdoors such as Triada and Keenadu.
In some cases, newly purchased Android devices have been found with malware already embedded in their firmware. Once installed at this level, the malicious software can provide attackers with extensive control over infected smartphones or tablets, allowing them to access sensitive data and system functions.
Kivva warned that such preinstalled backdoors are particularly difficult to remove, as they are integrated into the device’s core software.
To reduce the risk of infection, cybersecurity experts recommend that users download applications only from official app stores, including Google Play and Apple’s App Store, while remaining cautious about app permissions.
Users are also advised to regularly update their device operating systems and applications, as security updates often patch vulnerabilities that cybercriminals exploit.
The report emphasised that even official app stores are not completely risk-free, highlighting the need for greater user awareness and stronger cybersecurity practices as mobile banking adoption continues to expand.
