Kaspersky: Android Banking Trojan Attacks Up 56 Percent by 2025

JAKARTA - Kaspersky's latest report titled "Mobile Malware Evolution" found that the number of banking Trojan attacks on Android increased by 56% in 2025 compared to the previous year.

In addition, the number of new banking Trojan installation packages for Android (unique APK files) also increased sharply, reaching 255,090 packages, an increase of around 271% compared to 2024.

Among all the detected banking Trojans, the leading families are Mamont and Creduz. These types of malware are designed to steal user credentials for online banking, electronic payment services, and credit card systems.

In this scheme, cyber criminals generally distribute banking Trojans through messaging applications, as well as through malicious web pages.

Kaspersky experts believe that threat actors will continue to expand distribution channels and develop new Trojan variants to avoid detection by security solutions.

"As a result, all information on the infected device can be compromised. It is very difficult to remove such malware," said Anton Kivva, head of the malware analysis team at Kaspersky, in his statement.

If the device is infected, Kaspersky recommends users to check for firmware updates. After the update, run a scan of the device with the security solution again to ensure that the newly installed firmware is not infected.