Malwarebytes threat research data for the first half of 2025 reveals a dramatic escalation in mobile threats, particularly targeting Android devices. According to their latest findings, malware targeting Android has surged by 151% since the start of the year, signaling a new phase in the mobile threat landscape characterized not only by increased volume but also by greater coordination and precision among attackers.
Key points from the research include:
According to Malwarebytes, spyware—apps that collect user data without consent—has increased by 147%, with notable spikes in February and March, reaching nearly four times the baseline levels at those times. Between April and May, SMS-based malware experienced a staggering 692% spike. This may be linked to seasonal scams such as those seen during tax season or widespread campaigns like toll fee scams.
Attackers are now building ecosystems and fine-tuning their delivery methods, exploiting both human psychology and systemic weak points. For example, predatory apps like Spyloan lure users with attractive loan offers but ultimately steal from them, with a significant spike observed in May. Over 22,800 malicious Android applications have been detected, many masquerading as popular services such as TikTok, Spotify, and WhatsApp. These apps often trick users into connecting social media accounts or redirect them to phishing websites through deceptive ads.
Nearly half of users face mobile scams daily, and three-quarters of victims report serious emotional consequences, including anxiety, depression, and lost trust.
