E-Paper | April 29, 2026

Banking data theft attacks on smartphones surged in 2024

Ikram Junaidi Published March 7, 2025
comments
Whatsapp Channel

ISLAMABAD: The number of cyberattacks on smartphones to steal users’ banking credentials surged by 196 per cent in 2024 compared to the previous year, a new report has claimed.

The number of Trojan banker attacks on Android smartphones increased from 420,000 in 2023 to 1,242,000 in 2024, Russian cybersecurity and anti-virus firm Kaspersky said in its report.

Trojan banker malware are malicious computer programmes designed to gain access to a person’s online banking, e-payment or credit card services by stealing their credentials.

“Cybercriminals are shifting tactics, relying on mass malware distribution to steal banking credentials,” said the report titled ‘The mobile malware threat landscape in 2024’.

“Over the past year, more than 33.3 million attacks on smartphone users globally, involving various types of malware and unwanted software.”

Cybercriminals trick victims into downloading Trojan bankers by spreading links via SMS or messaging apps, attachments in email or other messengers and by directing users to malicious webpages.

In some cases, cybercriminals send messages from a hacked contact’s account, making the fraud appear more trustworthy, the report added. To deceive users, attackers often exploit trending news and hype topics to create a sense of urgency and lower victims’ guard.

Although Trojan bankers were the fastest-growing type of malware, they rank fourth overall in terms of the share of attacked users at 6pc. The most widespread category remains AdWare, accounting for 57pc of attacked users, followed by general Trojans (25pc) and RiskTools (12pc).

Adware is a type of malware or malicious software that delivers targeted advertisements to users. A Trojan virus disguises itself as legitimate software to trick users into installing it.

Shahzad Shahid, a policy advocate and IT expert, said the alarming rise in mobile banking malware attacks called for a multi-faceted approach to cybersecurity.

He said people must be educated on safe digital practices, such as avoiding suspicious links, using multi-factor authentication and installing security updates regularly.

Published in Dawn, March 7th, 2025

Our readers are at the heart of everything we do.
Do you have a thought to share or a way we can improve? We’d love to hear it. Reach out to us at feedback@dawn.com.
Newspaper

Ikram Junaidi is a staff correspondent for Dawn with over 25 years of experience. He covers national politics, particularly opposition parties, as well as public health issues.

Ikram Junaidi

Read more

Most Popular

01
02
03
04
05
06
07
08
09

Latest Stories

Opinion

Editorial

Growth to stability
Updated 29 Apr, 2026

Growth to stability

THE State Bank’s decision to raise its key policy rate by 100 basis points to 11.5pc signals a shift in priorities...
Constitutional order
29 Apr, 2026

Constitutional order

FOLLOWING the passage of the 26th and 27th Amendments, in 2024 and 2025 respectively, jurists and members of the...
Protecting childhood
29 Apr, 2026

Protecting childhood

AN important victory for child protection was secured on Monday with the Punjab Assembly’s passage of the Child...
Unlearnt lessons
Updated 28 Apr, 2026

Unlearnt lessons

THE US is undoubtedly the world’s top military and economic power at this time. Yet as the Iran quagmire has ...
Solar vision?
28 Apr, 2026

Solar vision?

THE recent imposition of certain regulatory requirements for small-scale solar systems, followed by the reversal of...
Breaking malaria’s grip
28 Apr, 2026

Breaking malaria’s grip

FOR the first time in decades, defeating malaria in our lifetime is possible, according to WHO. Yet in Pakistan,...
Dawn News English Podcasts
Subscribe