Digital Danger Zone: India Tops Global Charts with 40 Million Malicious Android App Downloads

India's Android phone users are under a significant cyber threat as risky apps have crossed 40 million downloads, according to Zscaler's ThreatLabz 2025 Mobile, IoT, and OT Threat Report. The study identified 239 malicious apps masquerading as productivity tools in the Google Play Store, exploiting trust especially among hybrid workers.

These apps, often found in the 'Tools' category, ranged from file managers to performance boosters, hiding malicious functions to steal credentials, surveil devices, and exploit mobile payments. The surge marks a 67% year-on-year rise in Android malware transactions globally, with India bearing 26% of total mobile attacks worldwide.

Critical sectors such as energy, manufacturing, and transport have seen sharp rises in attacks, threatening infrastructure security. Google has removed many flagged applications, but millions of compromised devices remain.

Security experts advise users to delete suspicious apps, avoid third-party stores, keep devices updated, enable Google Play Protect, and employ trusted security tools to mitigate risks.

Key Highlights

Over 40 million downloads of malicious Android apps in India before removal by Google.​

239 risky apps disguised as everyday tools targeting hybrid work users.​

India accounts for 26% of global mobile cyberattacks, with a 38% annual increase.​

Surge in attacks on critical sectors including energy (+387%) and manufacturing.​

Recommended user actions: Delete suspicious apps, enable Play Protect, update devices regularly.​

Experts warn of spyware, banking trojans, and adware as leading threats.​

Sources: Hindustan Times, Zscaler ThreatLabz 2025, Times of India, CERT-In