Education Sector a Top Target for Mobile Malware Attacks

Mobile and IoT/OT cyber threats continue to grow in number and complexity, becoming more targeted and sophisticated, according to a new report from Zscaler. Across sectors, the cybersecurity company's annual ThreatLabz report documented 29% and 111% growth in mobile backing malware and mobile spyware attacks, respectively, as well as 45% year-over-year growth in blocked IoT malware transactions. The report is based on data from the Zscaler Security Cloud between June 2023 and May 2024, comprising more than 20 billion threat-related mobile transactions and associated cyberthreats, the company said.

The most frequent targets of mobile malware, the report found, were the technology (18%), education (18%) and manufacturing (14%) sectors. In fact, education saw a 136% increase in blocked mobile malware transactions compared to the previous year, an area where most other sectors experienced a general decline.

As for attacks on IoT devices, routers were by far the most targeted device type, drawing 66% of attacks. Education organizations were the victims of just 2% of overall IoT malware attacks, compared to 37% in manufacturing and 14% in the transportation sector, according to the report.  

The report also offered a number of predictions for the coming year:

  • IoT and OT devices will remain primary threat vectors.
  • Manufacturing will remain a top target for IoT attacks, including ransomware.
  • AI will increasingly be used to create believable phishing campaigns targeting mobile users.
  • Zero trust device segmentation will become a top security priority for IoT and OT systems, starting with critical infrastructure.
  • AI will play a critical role for IoT and OT defenders.
  • Private 5G ecosystems with zero trust will become a key strategy for IoT and OT connectivity.
  • The trend of security platform consolidation will extend to IoT and OT environments.

The full report is available on the Zscaler site (registration required).

About the Author

Rhea Kelly is editor in chief for Campus Technology, THE Journal, and Spaces4Learning. She can be reached at [email protected].

Featured

  • a glowing gaming controller, a digital tree structure, and an open book

    Report: Use of Game Engines Expands Beyond Gaming

    Game development technology is increasingly being utilized beyond its traditional gaming roots, according to the recently released annual "State of Game Development" report from development and DevOps solutions provider Perforce Software.

  • abstract representation of equity at the core of AI

    Why Equity Must Be a Core Part of the Conversation About AI

    AI is an immensely powerful tool that can provide customized support for students with diverse learning needs, tailoring educational experiences to meet student’s individual needs more effectively. However, significant disparities in AI access and digital literacy skills prevent many of these same students from fully leveraging its benefits.

  • Man wearing headset working on a computer

    Internet2: Network Routing Security and RPKI Adoption in Research and Education

    We ask James Deaton, vice president of network services, about Internet2's initiatives and leadership efforts to promote routing security and RPKI adoption in research and higher education networks.

  • network of transparent cloud icons, each containing a security symbol like a lock or shield

    Okta, OpenID Foundation Propose New Identity Security Standard

    Okta and the OpenID Foundation have announced the formation of the IPSIE Working Group — with the acronym standing for Interoperability Profiling for Secure Identity in the Enterprise — dedicated to a new identity security standard for Software-as-a-Service (SaaS) applications.