Threat Intelligence

December 19, 2025

Kimsuky Expands Mobile Attacks with Weaponized QR Codes

Kimsuky uses weaponized QR codes to deliver Android malware, bypassing traditional security controls. Discover how Zimperium protects against these advanced mobile threats.

Read More

December 18, 2025

PDF Phishing: The Hidden Mobile Threat

Mobile phishing attacks using PDF documents sent via SMS/MMS are on the rise, targeting users' trust to steal confidential information. Learn about the latest campaigns and detection methods.

Read More

December 10, 2025

Total Takeover: DroidLock Hijacks Your Device

New Android ransomware, DroidLock, targets Spanish users, hijacking devices via phishing sites, exploiting admin privileges, and stealing credentials while Zimperium's MTD detects and mitigates threats.

Read More

December 4, 2025

Return of ClayRat: Expanded Features and Techniques

New ClayRat variant expands Android spyware capabilities with Accessibility abuse, screen recording, keylogging, overlays, and remote control. Learn how Zimperium detects and stops it.

Read More

December 1, 2025

AI-Driven Obfuscation is Rising in Mobile Malware, but Zimperium Stays Ahead

AI-driven obfuscation in mobile malware is rising, but Zimperium's advanced detection provides zero-day protection against evolving threats, ensuring robust security for enterprises and consumers alike.

Read More

November 19, 2025

Follow the Map to Enterprise Risk: What’s Inside Popular Android Apps

Hidden inside top Android apps is an outdated Mapbox library with vulnerable SQLite code. Learn how this exposes millions of users and enterprises to real security risks.

Read More

November 13, 2025

Are Your Employees Putting Your Enterprise at Risk This Holiday Season?

Protect your enterprise this holiday season by understanding how mishing, malware, and app vulnerabilities can put your mobile-connected employees and business at risk.

Read More

November 12, 2025

NGate: NFC Relay Malware Enabling ATM Withdrawals Without Physical Cards

NFC malware NGate enables unauthorized ATM withdrawals via Android devices, highlighting the need for advanced mobile threat detection to combat sophisticated financial fraud.

Read More

November 6, 2025

Fantasy Hub: Another Russian Based RAT as M-a-a-S

New Russian Android RAT, Fantasy Hub, targets financial institutions and leverages advanced social engineering for device control and data exfiltration.

Read More

October 31, 2025

Rapid Response: Zimperium’s Zero-Day Coverage of GhostBat RAT Campaign

Learn how GhostBat RAT malware exploits Indian RTO apps to steal sensitive data and how Zimperium’s solutions detect and protect against such threats.

Read More

October 29, 2025

Tap-and-Steal: The Rise of NFC Relay Malware on Mobile Devices

NFC relay malware on Android devices is exploiting Tap-to-Pay systems, targeting financial institutions globally with sophisticated attacks and minimal user interaction.

Read More

October 9, 2025

ClayRat: A New Android Spyware Targeting Russia

Zimperium researchers uncover ClayRat, a rapidly evolving Android spyware campaign targeting Russian users via Telegram and phishing sites—capable of stealing SMS, call logs, notifications, device data, and spreading through mass SMS to contacts.

Read More

October 8, 2025

Why Mobile Threat Defense Still Matters in the Era of Apple’s Memory Integrity Enforcement

Apple’s Memory Integrity Enforcement raises the bar against kernel exploits, but it doesn’t address phishing, jailbreaks, or network threats. Learn why enterprises still need mobile threat defense for real-time detection, visibility, and protection across all attack surfaces.

Read More

October 2, 2025

Insecure Mobile VPNs: The Hidden Danger

Many free mobile VPN apps are insecure, exposing user data and enterprise information to significant risk. Learn about the hidden dangers and vulnerabilities in these apps.

Read More

September 10, 2025

Rapid Response: Zimperium’s Full Detection for RatOn — NFC Heists, Remote Control, and Automated Transfers

Alert: RatOn Android malware combines NFC relay attacks, phishing, and remote access trojans to target banking and crypto apps, demanding robust mobile defense solutions. Zimperium can protect you.

Read More

August 6, 2025

The Growing Threat of Mobile Infostealers

Discover how advanced mobile infostealers threaten individuals and enterprises, and learn about Zimperium’s proactive detection strategies to safeguard your mobile devices.

Read More

July 30, 2025

Behind Random Words: DoubleTrouble Mobile Banking Trojan Revealed

DoubleTrouble Trojan infiltrates mobile devices via Discord, stealing credentials with advanced features like screen capture and keylogging. Zimperium's defenses detect and protect against this evolving threat.

Read More

May 29, 2025

Rapid Response: Zimperium Detects All Reported Samples of Evolving Zanubis Android Banking Trojan

As Zanubis and other banking trojans continue to adapt and become more sophisticated, Zimperium remains committed to delivering advanced, proactive protection to secure mobile users and financial institutions worldwide.

Read More

April 22, 2025

Rapid Response: Zimperium Detects SuperCardX NFC Relay Fraud Operation

A recent report by Cleafy uncovered SuperCardX, a sophisticated Malware-as-a-Service (MaaS) operation used for conducting NFC relay fraud.

Read More