Zscaler’s ThreatLabz 2025 report warns that India remains the world’s most targeted country for mobile malware, driven by rapid digitisation, rising app usage, and expanding IoT deployments across consumer and enterprise environments.
India has once again emerged as the primary global target for mobile malware attacks, underscoring the growing cyber risks accompanying the country’s fast-paced digital transformation. According to the latest ThreatLabz 2025 Mobile, IoT, and OT Threat Report released by Zscaler, India accounted for 26 percent of all mobile malware activity worldwide, placing it ahead of the United States and Canada.
The findings point to a sharp escalation in attacks over the past year. Mobile malware incidents in India jumped 38 percent year-on-year, reflecting the expanding use of smartphones for payments, work applications, and daily services. As digital platforms become deeply embedded in everyday life, attackers are increasingly exploiting mobile devices as the weakest entry point into networks.
Malicious apps and sector-wise exposure
One of the most concerning trends highlighted in the report is the infiltration of malicious apps into trusted platforms. Zscaler researchers identified 239 harmful Android applications hosted on the Google Play Store, collectively downloaded more than 42 million times. Many of these apps were disguised as productivity or workflow tools, making them especially effective in hybrid and remote work settings where mobile phones serve dual personal and professional roles.
Overall, Android malware activity rose 67 percent compared to the previous year, with spyware and banking malware continuing to dominate. These threats are designed to quietly harvest sensitive information, monitor user activity, or siphon financial data, often without users realising they have been compromised.
The report also reveals that consumer-facing industries are bearing the brunt of these attacks in India. Retail and wholesale businesses accounted for 38 percent of detected activity, followed by hospitality, restaurants, and leisure at 31 percent. Manufacturing and energy-related sectors were also targeted, reflecting attackers’ focus on environments that rely heavily on connected systems and uninterrupted operations.
IoT risks and the road ahead
While the United States remains the epicentre of global IoT malware activity, India ranked among the top affected countries. Within India, backdoor and botnet-style malware dominated IoT detections, indicating a preference for tools that allow persistent and remote control of compromised devices.
Experts warn that India’s expanding ecosystem of UPI, super apps, and IoT deployments makes it a high-value target for cybercriminals. The report also flagged emerging threats, including malware targeting Android TV devices and remote access tools aimed at job seekers in sensitive sectors.
As attackers shift toward mobile payments and connected infrastructure, security leaders are being urged to adopt stronger, Zero Trust-based approaches. The message from the report is clear: as India’s digital footprint grows, so must its focus on robust mobile and IoT security.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
