India Sees Highest Mobile Malware Attacks In The World, Ahead Of The US And Canada

India is the most targeted nation when it comes to mobile malware attacks, outpacing the US and Canada and inching higher from its previous third spot, according to a new report by Zscaler ThreatLabz.

Also read: Uber Rider Safety In India Enhanced With Focus On Women

India Accounts For 28% Global Malware Attacks

The 2024 Mobile, IoT, and OT Threat Report by Zscaler ThreatLabz analysed an extensive dataset of over 20 billion mobile threat-related transactions conducted between June 2023 and May 2024. The findings reveal that India now accounts for 28 per cent of global mobile malware attacks, surpassing the US (27.3 per cent) and Canada (15.9 per cent).

Trojans, which comprise nearly half of mobile attacks, pose a particularly serious threat, with the financial sector experiencing heightened vulnerability. 

Increase In Banking Malware Attacks 

The report documented a 29 per cent increase in banking malware attacks and a dramatic 111 percent surge in mobile spyware incidents. 

Cybercriminals are employing sophisticated techniques to bypass multi-factor authentication, frequently using phishing strategies like creating fraudulent login pages for financial institutions, social media platforms, and cryptocurrency wallets.

HDFC, ICICI, Axis Banks See Higher Phishing Attempts

Major Indian banks, including HDFC, ICICI, and Axis, have witnessed an escalation in phishing attempts targeting mobile customers. Attackers are crafting deceptive websites that closely resemble legitimate banking platforms to trick users into revealing sensitive financial information.

Previously observed tactics involving Android-based phishing malware through fake card update sites have continued to facilitate widespread financial fraud. 

The Indian postal service has also fallen victim to these schemes, with attackers using SMS messages to direct users to phishing sites, often exploiting scenarios involving package delivery to create a sense of urgency.

Suvabrata Sinha, CISO-India at Zscaler, emphasised the critical need for Indian enterprises to implement a robust zero-trust security framework.

"It is necessary for Indian enterprises to adopt a robust zero-trust security framework to secure their core operational environments. This will not only protect critical systems but also ensure business continuity in an increasingly connected world," Sinha was quoted as saying.

The global cyber threat landscape appears equally concerning, with over 200 malicious applications discovered on the Google Play Store and a 45 per cent year-over-year increase in IoT malware transactions. 

Despite these challenges, India has made some progress, improving its ranking as a malware origin point by moving from 5th to 7th place in the Asia-Pacific region.