A significant spike in mobile-based cyber threats has set off alarm bells among cybersecurity experts, with a new report by Kaspersky revealing a four-fold increase in mobile financial malware incidents in 2024 compared to the previous year. The rise is most prominent among Android users, who remain the primary targets of attackers exploiting mobile platforms. While users often assume laptops and desktops are more prone to online threats, the report highlights a worrying shift: mobile devices are now at the center of cybercriminal strategies. Browsers like Chrome, Safari, and Edge, which dominate the U.S. market, are all vulnerable entry points for mobile attacks.
ALSO READ: Call for Cyber Experts: Join FCRF Academy as Trainers and Course Creators
Kaspersky’s findings emphasize that beyond headline-grabbing malware targeting banks and cryptocurrencies, fake online stores continue to be a persistent and underestimated danger. These fraudulent platforms lure users with offers, giveaways, and rare item listings, particularly during peak shopping periods like the holiday season. Security firm Zimperium echoed the concerns, stating that cybercriminals are increasingly favoring a “mobile-first attack strategy.” This method blends social engineering tactics with mobile vulnerabilities, tricking users into disclosing sensitive information like passwords, OTPs, and payment details.
One of the most concerning revelations is that Amazon remains the most impersonated brand by online scammers, retaining the top spot in 2024 and likely continuing into 2025. Users are often duped by phishing messages or links that mimic Amazon’s platform, requesting sensitive data in the guise of “gift card redemptions” or “security verifications.”
The attackers use clever psychological tricks—offering free prizes or fake alerts—to manipulate victims into clicking malicious links or entering personal information. Kaspersky also noted an uptick in scams involving brands like Netflix and Alibaba, further demonstrating that recognizable global names are prime bait in phishing campaigns. Moreover, fake marketplaces and counterfeit seller profiles are on the rise, preying on users looking for deep discounts or hard-to-find products. In most cases, the buyer ends up submitting payment information but receives nothing in return.
ALSO READ: “DFIR Capability Maturity Assessment Framework” by ALGORITHA
Despite advances in browser-level threat detection, user awareness remains the strongest line of defense. Experts advise against clicking on unsolicited links—especially those received via text, email, or forums. Instead, consumers should access online stores directly via trusted web searches or apps.
“The golden rule is simple,” Kaspersky advises. “Avoid too-good-to-be-true deals and double-check website authenticity before entering your banking or login details.” As mobile devices become integral to daily life, from banking to shopping, cybersecurity specialists warn that the risks will only grow unless users adopt more cautious browsing habits.