26% of Global Incidents Reported Here, Over 40 Million Downloads of Fake Apps.
New Delhi – As India races ahead in the digital era, the smartphone — once a symbol of convenience — has now become the biggest target for cybercriminals. According to Zscaler’s “ThreatLabz 2025 Mobile, IoT, and OT Threat Report”, a staggering 26% of all mobile cyberattacks globally occur in India, making the country the top target worldwide.
The report reveals that global mobile and spyware attacks have increased by 67% in just one year, while India alone saw a 38% year-on-year surge in mobile-based cybercrimes. Hackers are shifting their focus from traditional credit card scams to mobile payments and digital transactions, exploiting the rapid rise of cashless platforms.
Mobile Payments, Wallets, and Digital Transactions Under Attack
Zscaler’s findings show that cybercriminals are increasingly targeting mobile devices to steal users’ banking credentials, card details, and personal data. The surge in digital wallet and UPI-based payments has created new avenues for exploitation.
Fraudsters often disguise malicious programs as loan apps, investment platforms, or utility tools, tricking users into installing them. Once downloaded, these apps gain access to sensitive permissions — including camera, microphone, and file storage — allowing hackers full control of the device.
Industrial Sectors Also Under Fire: Energy Most Affected
The report notes that the threat is no longer limited to individual users. Critical industries such as energy, manufacturing, and transportation have witnessed an alarming rise in attacks.
The energy sector alone experienced a 387% increase in cyber incidents compared to last year. Experts warn that such attacks pose serious risks to operational technology (OT) infrastructure, potentially disrupting essential services and industrial operations.
Fake Apps Flood Google Play Store
One of the most alarming findings is that over 200 malicious apps were identified on the Google Play Store, with a combined 42 million downloads. These apps often masquerade as productivity boosters, system cleaners, or security utilities — but in reality, they are designed to steal user data, install malware, or trigger ransomware attacks.
Despite Google’s continuous monitoring and verification efforts, cybercriminals are finding new ways to list such apps on the platform, making it increasingly difficult for users to differentiate between genuine and fake applications.
Expert View: Prof. Triveni Singh (Ex-IPS), Cybercrime Expert
Renowned cybercrime expert and former IPS officer Professor Triveni Singh said the spike in mobile-related cybercrimes in India is a “direct outcome of rapid digital adoption combined with a lack of cyber awareness.”
According to him,
“Almost every individual today owns a smartphone, but very few understand digital safety. Clicking on fake links or downloading fraudulent apps has become the new ‘digital trap’. Hackers no longer just steal money — they steal identities, data, and even manipulate victims psychologically. Until users practice cyber discipline, no technology can fully protect them.”
Prof. Singh further noted that mobile-based fraud in India has now evolved into a form of organized crime. He emphasized that the response must go beyond technology — India needs a policy-level and awareness-driven approach.
He also suggested launching a nationwide Mobile Cyber Hygiene Campaign in collaboration with the government and tech companies to educate citizens about safe digital practices and mobile security.
The Road Ahead: Smartphone Security Must Be a National Priority
With mobile penetration and digital payments accelerating at record speed, India’s rising share in global cyberattacks is a warning bell. The report makes it clear — the next battleground for cybersecurity is the smartphone itself.
Both the government and private sector must strengthen system-level safeguards, while users must take responsibility for their own digital hygiene.
The message for India is clear — digital convenience must go hand in hand with digital caution, because your smartphone is now your first line of defense.
