The UAE Cybersecurity Council has issued a nationwide alert urging citizens and residents to avoid downloading unverified mobile applications, warning that such apps pose severe risks including malware, financial theft, and data breaches.
With daily cyberattacks in the UAE reaching nearly 200,000 in 2025, the Council emphasized that malicious apps are increasingly being used by cybercriminals to steal sensitive data and exploit users, particularly during holidays and major national events.
Reasons Behind the Warning
The surge in attacks has heightened the need for caution. Criminals exploit unverified apps to spread malware, commit identity theft, and gain unauthorized access to personal information. This trend has been especially pronounced during times of increased online activity.
Council’s Key Recommendations
- Download only from trusted platforms: Apple App Store, Google Play Store, or official provider websites.
- Review app permissions carefully: Reject apps demanding excessive access to contacts, messages, or location data.
- Keep devices updated: Apply regular operating system and app security patches.
- Be cautious with links: Avoid opening files or links from unknown or suspicious sources.
- Leverage awareness campaigns: The Council’s “Cyber Pulse” initiative educates the public on safe digital practices.
App Security in the UAE Context
The Emirates has seen a 63% year-on-year increase in detected mobile vulnerabilities, particularly in finance, healthcare, and logistics sectors. Strict regulatory frameworks, including the UAE Personal Data Protection Law (PDPL) and National Electronic Security Authority (NESA) requirements, obligate organizations to maintain strong cybersecurity practices or face penalties. Meanwhile, the Central Bank has moved away from weaker SMS/email OTPs, mandating more secure app-based verification.
National Cybersecurity Strategy
Aligned with Vision 2030, the UAE is strengthening cybersecurity resilience through:
- Multi-tiered national and emirate-level initiatives.
- 24/7 Security Operations Centres (SOCs) monitoring threats in real time.
- Nationwide awareness, training, and collaborative drills for citizens, businesses, and government institutions.
How to Stay Safe
Authorities advise the public to:
- Install apps only from official stores or verified sources.
- Check developer credentials and user reviews.
- Limit app permissions to essential functions.
- Regularly update devices and apps.
- Report suspicious apps to the Telecommunications Regulatory Authority, Cybersecurity Council, or police cybercrime units.
This latest warning underscores the UAE’s push to make cybersecurity a shared responsibility across society. By adopting the Council’s safety measures, both individuals and businesses can mitigate risks and contribute to a more secure digital ecosystem.
The UAE Cybersecurity Council’s alert is not just precautionary but a direct response to escalating digital threats. Reinforced by regulatory safeguards and public education, it reflects the nation’s broader commitment to building a secure and resilient digital environment.
