Recent findings from the Zscaler ThreatLabz 2025 Mobile, IoT, and OT Threat Report reveal a concerning surge in malicious applications within the Google Play Store, specifically targeting users in search of productivity and workflow tools. Deepen Desai, the Executive Vice President and Chief Security Officer at Zscaler, highlighted a staggering year-over-year increase of 67% in malware aimed at mobile devices, alongside a remarkable 387% rise in IoT and OT attacks, particularly within the energy sector, which is often home to critical infrastructure.
Key takeaways:
- Malware Growth: The report indicates a 67% increase in Android malware transactions, underscoring the persistent threats posed by spyware and banking malware.
- Malicious Apps Identified: Researchers from ThreatLabz discovered 239 malicious applications on the Google Play Store, which collectively amassed 42 million downloads.
- Deceptive Distribution Channels: A significant portion of this malware was found in the “Tools” category, where malicious applications masquerade as legitimate productivity and workflow tools. This strategy exploits user trust in functionality-driven applications, especially in hybrid and remote work environments where mobile devices play a crucial role.
- Targeted Sectors: The manufacturing sector continues to be a primary target for mobile and IoT attacks, with both manufacturing and transportation industries accounting for 20.2% of all observed IoT malware attacks this year. Together, they represent over 40% of total incidents, indicating a shift from 2024 when manufacturing alone comprised 36% of incidents.
- Geographic Concentration: Mobile attacks are predominantly clustered in India, the United States, and Canada, with the United States emerging as the epicenter for IoT threats, accounting for 54% of such incidents.
- Regional Threat Landscape: The global landscape of mobile threats has intensified, with India leading at 26% of all mobile attacks, followed by the United States at 15% and Canada at 14%. Notably, India experienced a significant 38% increase in mobile threat attacks compared to the previous year.
- Shift in Fraud Tactics: Threat actors are moving away from card-focused fraud schemes, increasingly favoring mobile payment methods.
Desai emphasizes that adopting a Zero Trust approach, augmented by AI-powered threat detection, is essential for organizations to mitigate their attack surface, limit lateral movement, and bolster defenses against the ever-evolving landscape of cyber threats.
