Mobile Threats Surge in the Middle East as Africa and Turkiye See Decline – Kaspersky Report
A new report from Kaspersky’s Global Research and Analysis Team has revealed stark regional differences in mobile cybersecurity threats across the Middle East, Turkiye, and Africa (META), with the Middle East emerging as a growing hotspot for mobile attacks.
While the overall number of mobile attacks across the META region remained largely stable during Q1 2025 compared to the previous quarter, the Middle East recorded a significant 43% surge, surpassing 57,000 detected threats. In contrast, Africa and Turkiye showed signs of progress, with mobile attacks declining by 17% and 16%, respectively. Africa reported 94,270 attacks, while Turkiye recorded 28,592.
> “The decline in the number of mobile attacks in some parts of the META region is certainly a positive sign and may indicate that awareness and protective measures are starting to pay off,” said Tatyana Shishkova, Lead Security Researcher at Kaspersky. “However, the threat is far from gone. Cybercriminals are becoming more skilled and selective, increasingly leveraging sophisticated AI-powered and targeted attacks.”
All recorded threats were successfully blocked by Kaspersky’s mobile security solutions on Android devices. The report highlights a troubling trend: cybercriminals are increasingly adopting cascade-style infection methods—finding multiple entry points to infiltrate smartphones, as more essential services and sensitive data move onto mobile platforms.
Social Engineering and AI Amplify Risks
Many recent attacks have been linked to social engineering tactics, especially through popular social media platforms and unofficial app stores. One such example is the Tria Trojan campaign, which spread via fake wedding invitations sent over WhatsApp and Telegram. Users were tricked into installing malicious APK files disguised as legitimate applications.
Not even official app marketplaces are entirely safe. Kaspersky researchers uncovered SparkCat, a sophisticated data-stealing Trojan that used machine learning algorithms to target cryptocurrency wallets and extract sensitive information in nine languages. Shockingly, the app was available on both Google Play and the Apple App Store, and was downloaded more than 242,000 times before being removed.
In a more alarming trend, some counterfeit smartphones have been found to ship with pre-installed malware—specifically a modified version of the notorious Android Trojan Triada—before even reaching end users.
> “Even the most vigilant individuals can miss a well-crafted threat. That’s why cybersecurity must be proactive—not reactive,” Shishkova emphasized. “Staying ahead of cybercriminals takes innovation from tech companies, expertise from security professionals, and awareness from users. It’s a shared responsibility.”
Kaspersky’s Mobile Security Tips
To help users stay protected, Kaspersky advises:
Download apps only from official stores like Apple App Store, Google Play, or Amazon Appstore. While not entirely risk-free, these platforms offer basic screening and user review systems.
Review app permissions carefully, especially for high-risk access like Accessibility Services.
Stay alert to suspicious links and messages, even from known contacts.
Keep devices updated with the latest software and security patches.
As mobile devices continue to dominate how people connect, work, and manage finances, Kaspersky’s report serves as a stark reminder that the mobile threat landscape is evolving rapidly—and no user or region is immune.