In 2022, Kaspersky experts discovered nearly 200,000 new mobile banking Trojans, marking a two-fold increase from the previous year’s figures. This alarming surge in the number of mobile banking Trojans is also the highest ever reported in the last six years. These and other findings are in Kaspersky’s ‘Mobile Threats in 2022’ report.
With the evolution of mobile services and technologies, mobile threats are becoming increasingly prevalent. To address this growing concern, Kaspersky experts continuously monitor the mobile threat landscape, track threat trends, and keep users and the cybersecurity community informed about potential dangers. In 2022, Kaspersky products detected 1,661,743 malware or unwanted software installers.
One of the most prevalent and concerning mobile threats is mobile banking Trojans, which are used to hunt for data related to online banking and e-payment systems. Kaspersky detected 196,476 mobile banking Trojan installers in 2022, twice more than in 2021, and the highest figure in the past six years. This underscores that cybercriminals are targeting mobile users and increasingly more interested in stealing financial data and actively investing in the creation of new malware, which may lead to major losses for their targets.
Cybercriminals often spread Trojan banker malware through both official and unofficial app stores. Google Play still contains downloaders for banking Trojan families, such as Sharkbot, Anatsa/Teaban, Octo/Coper, and Xenomorph, all disguised as utilities. For example, the Sharkbot actively distributed downloaders mimicking a file manager that can request permission to install further packages necessary for the Trojan to function on the user’s device, putting the user’s security at risk.