Rising Android malware and malicious app distribution on Google Play
Target Trend
Summary
Hide ▲
Show ▼
Mobile malware targeting Android devices rose 67% over the past year, widening exposure across Google Play users. 239 malware-laden apps bypassed Google’s filters and were downloaded 42 million times between June 2024 and May 2025. The most common lure was productivity and workflow software in the Tools category. Manufacturing and energy saw the heaviest targeting, while India, the US, and Canada accounted for most malicious mobile traffic.
Related Happenings
Trapdoor Android malvertising and ad-fraud campaign
Campaign
First: 19.05.2026 19:38
Last: 19.05.2026 19:38
Sources 1
About this happening:
The **Trapdoor** campaign is a **self-sustaining malvertising and ad-fraud operation** targeting **Android users** and turning app installs into revenue through threat-actor-contr...
Trapdoor Android malvertising and ad-fraud campaign
CampaignAbout this happening: The **Trapdoor** campaign is a **self-sustaining malvertising and ad-fraud operation** targeting **Android users** and turning app installs into revenue through threat-actor-contr...
AI-driven attack surge against customer-facing mobile apps in 2026
Target Trend
First: 19.05.2026 15:00
Last: 19.05.2026 15:00
Sources 1
About this happening:
**Customer-facing mobile apps** faced a sharp rise in attacks in **2026**, with **87%** of monitored apps hit versus **55% in 2022**. The trend matters because **agentic AI** is l...
AI-driven attack surge against customer-facing mobile apps in 2026
Target TrendAbout this happening: **Customer-facing mobile apps** faced a sharp rise in attacks in **2026**, with **87%** of monitored apps hit versus **55% in 2022**. The trend matters because **agentic AI** is l...
CallPhantom Google Play fraud campaign targeting Android users in India and Asia-Pacific
Campaign
First: 08.05.2026 18:08
Last: 08.05.2026 18:08
Sources 1
About this happening:
The **CallPhantom** fraud campaign pushed **28 fake call-history Android apps** through the **Google Play Store**, causing **financial loss** for users who paid for fabricated dat...
CallPhantom Google Play fraud campaign targeting Android users in India and Asia-Pacific
CampaignAbout this happening: The **CallPhantom** fraud campaign pushed **28 fake call-history Android apps** through the **Google Play Store**, causing **financial loss** for users who paid for fabricated dat...
BirdCall Android spyware variant
Malware Activity
First: 05.05.2026 12:04
Last: 05.05.2026 12:04
Sources 1
About this happening:
The **BirdCall** Android spyware variant expanded a known **Windows** backdoor into a mobile surveillance tool with **file exfiltration** and device reconnaissance capabilities. I...
BirdCall Android spyware variant
Malware ActivityAbout this happening: The **BirdCall** Android spyware variant expanded a known **Windows** backdoor into a mobile surveillance tool with **file exfiltration** and device reconnaissance capabilities. I...
APT37 BirdCall Android supply-chain campaign
Campaign
First: 05.05.2026 12:04
Last: 05.05.2026 12:04
Sources 1
About this happening:
The **APT37** campaign now delivers a new **Android** variant of **BirdCall** through **trojanized APKs** on **sqgame[.]net**, expanding the operation beyond its known **Windows**...
APT37 BirdCall Android supply-chain campaign
CampaignAbout this happening: The **APT37** campaign now delivers a new **Android** variant of **BirdCall** through **trojanized APKs** on **sqgame[.]net**, expanding the operation beyond its known **Windows**...
Timeline
-
05.11.2025 11:30 2 articles · 6mo ago
Android malware surge reaches Google Play
Initial DisclosureZscaler's ThreatLabz 2025 Mobile, IoT, and OT Threat Report says Android malware targeting rose 67% over the past year, with 239 malware-laden apps bypassing Google Play filters and being downloaded 42 million times between June 2024 and May 2025. Productivity and workflow apps in the Tools category were among the most common lures, and manufacturing and energy were the most frequently targeted sectors.
Show sources
- Hundreds of Malware-Laden Apps Downloaded 42 Million Times From Google Play — www.infosecurity-magazine.com — 05.11.2025 11:30
- Hundreds of Malware-Laden Apps Downloaded 42 Million Times From Google Play — www.infosecurity-magazine.com — 05.11.2025 11:30