Summary is AI-generated, newsdesk-reviewed
  • Zimperium warns of rising mobile credential theft; malware evolves to target login credentials.
  • 2024 sees 16% of cyberattacks linked to mobile credential theft; driven by phishing.
  • Mobile security is crucial; Zimperium offers AI-driven solutions to combat these threats.
Related Links

Zimperium, the global pioneer in mobile security, issued a stark warning to organisations worldwide: mobile-based credential theft is accelerating, and the wave is far from over. 

Looking back over the past year, Zimperium’s global telemetry revealed more than 2,400 variants of mobile malware specifically engineered to steal login credentials and intercept multi-factor authentication (MFA) codes. These attacks are powered by mishing (mobile focused phishing) campaigns and sideloaded apps that silently harvest access keys from the very devices employees rely on every day.

Massive breaches

Massive breaches are no longer starting on desktops, they’re starting in your pocket,” said Nicolás Chiaraviglio, Chief Scientist at Zimperium, adding What we saw last year is only the beginning. Organisations must take mobile security seriously to stop credential-stealing malware before it compromises enterprise resources.”

Key trends from the past year:

  • Credential theft was tied to 16% of cyberattacks in 2024, up from 10% in 2023
  • Attacks spread through mishing campaigns and sideloaded apps, often disguised as legitimate tools
  • Major hotspots include Southeast Asia, but detections are global in scope
  • Targeted industries: finance, retail, and software, where stolen credentials have immediate value

Families like TriaStealer, TrickMo, AppLite, Triada, and SMS Stealer show how attackers exploit mobile devices — intercepting one time passwords, hijacking messaging apps, and exfiltrating sensitive data without detection.

Mobile credential theft

The rise in mobile credential theft in 2024 is not an isolated spike; it signals a fundamental shift in how attackers operate. As mobile usage in the workforce continues to climb, these threats will only multiply.

Nicolás Chiaraviglio continues, “Enterprises can no longer treat mobile as secondary in their security strategies. If your mobile defenses aren’t proactive and real-time, you’re leaving the keys to your business exposed.”

Zimperium’s Mobile Threat Detection (MTD) and Mobile Runtime Protection (zDefend) provide on-device, AI-driven security to stop these threats in real time — even when no known signatures exist. 

From facial recognition to LiDAR, explore the innovations redefining gaming surveillance

Related videos

Insta DomainLink Secret™

Insta DomainLink Secret™
Wan 2.2-S2V demo video: Female singer

Wan 2.2-S2V demo video: Female singer
Dahua MultiVision Online Event - Look Wider, Protect Deeper

Dahua MultiVision Online Event - Look Wider, Protect Deeper

In case you missed it

What are emerging applications for physical security in transportation?
What are emerging applications for physical security in transportation?

Transportation systems need robust physical security to protect human life, to ensure economic stability, and to maintain national security. Because transportation involves moving...

Gallagher & Fortified enhance perimeter security solutions
Gallagher & Fortified enhance perimeter security solutions

Global security manufacturer - Gallagher Security is proud to announce a strategic partnership with Fortified Security, a pioneering perimeter systems integrator with over 30 years...

Genetec: Data sovereignty in physical security
Genetec: Data sovereignty in physical security

Genetec Inc., the global pioneer in enterprise physical security software, highlights why data sovereignty has become a central concern for physical security leaders as more survei...

Featured white papers
One system, one card

One system, one card

Download
Aligning physical and cyber defence for total protection

Aligning physical and cyber defence for total protection

Download
Understanding AI-powered video analytics

Understanding AI-powered video analytics

Download
Enhancing physical access control using a self-service model

Enhancing physical access control using a self-service model

Download
How to implement a physical security strategy with privacy in mind

How to implement a physical security strategy with privacy in mind

Download
More corporate news
Auerswald & DoorBird boost access control systems

Auerswald & DoorBird boost access control systems
Claroty & Google boost IT-OT security collaboration

Claroty & Google boost IT-OT security collaboration
ASSA ABLOY joins TIA to enhance security standards

ASSA ABLOY joins TIA to enhance security standards
Featured products
Dahua Smart Dual Illumination Active Deterrence Network PTZ Camera

Dahua Smart Dual Illumination Active Deterrence Network PTZ Camera
Hikvision DS-K6B630TX: Smart Pro Swing Barrier for Modern Access Control

Hikvision DS-K6B630TX: Smart Pro Swing Barrier for Modern Access Control
Climax Mobile Lite: Advanced Personal Emergency Response System (PERS)

Climax Mobile Lite: Advanced Personal Emergency Response System (PERS)