Banking Data Theft Attacks on Smartphones surge by 196% in 2024, Kaspersky reports

Cybercriminals have intensified their efforts to steal banking credentials, with Trojan banker attacks on smartphones surging by 196% in 2024, according to a Kaspersky report presented at Mobile World Congress 2025 in Barcelona.

Over the past year, Kaspersky detected more than 33.3 million attacks on smartphone users worldwide, involving malware, adware, and unwanted software. The findings indicate a shift in cybercriminal tactics, with attackers prioritizing mass malware distribution over creating new, unique malware.

Trojan Banker Attacks on Android Devices Triple

The report reveals a major increase in banking Trojan infections on Android devices, with attacks rising from 420,000 in 2023 to 1,242,000 in 2024.

Trojan banker malware is specifically designed to steal user credentials for:

• Online banking
• E-payment services
• Credit card systems

Cybercriminals deploy these Trojans using fraudulent SMS messages, messaging apps, and malicious attachments. In some cases, hackers even use compromised contact lists to send deceptively authentic messages, making their scams more convincing.

Exploiting Trends and Psychological Traps

To lure victims, cybercriminals exploit trending news and hype topics to create a false sense of urgency. This tactic lowers the victim’s guard and increases the likelihood of clicking malicious links.

“Scammers have scaled down efforts to create unique malware packages and are now mass-distributing the same files to as many victims as possible. It is crucial to stay cyber-literate and educate loved ones—from children to the elderly—because no one is completely safe from well-crafted scams designed to steal banking data,” said Anton Kivva, security expert at Kaspersky.

Trojan Bankers Among the Fastest-Growing Threats

Despite their rapid growth, Trojan bankers account for 6% of total mobile attacks, ranking fourth overall. The most widespread threats in 2024 were:

1. AdWare – 57% of attacked users
2. General Trojans – 25%
3. RiskTools – 12%
4. Trojan Bankers – 6%

Monthly Attacks Average 2.8 Million Cases

On average, cybercriminals launched 2.8 million mobile malware, adware, and unwanted software attacks per month in 2024. Kaspersky products successfully blocked 33.3 million incidents over the course of the year.

Most Active Threats in 2024

• Fakemoney Scam Apps – A group of fraudulent apps designed for fake investments and payouts emerged as the most active mobile threat.
• Modified WhatsApp Versions – Malicious WhatsApp mods containing Triada-type Trojans ranked as the third most active mobile threat. These Trojans can download additional malware to display ads or perform unauthorized actions.

How to Protect Yourself from Mobile Cyber Threats

To reduce the risk of banking data theft, Kaspersky recommends the following cybersecurity practices:

1. Avoid Clicking on Suspicious Links – Cybercriminals often use phishing messages to trick users into downloading malware.
2. Use Official App Stores – Download apps only from trusted sources like Google Play and Apple’s App Store.
3. Enable Two-Factor Authentication (2FA) – Adding an extra layer of security makes it harder for hackers to access your accounts.
4. Update Your Software Regularly – Keeping your device and apps updated helps patch security vulnerabilities.
5. Use Reliable Security Software – Installing trusted antivirus software can help detect and block malware before it causes harm.

With cybercriminals adapting their tactics, users must remain vigilant and stay informed to safeguard their personal and financial data.