According to a recent report from Lookout, a cloud security company, iOS devices are more vulnerable to phishing attacks than Android devices. The Mobile Threat Landscape Report for Q3 2024 found that 18.4% of iOS devices were targeted by phishing attempts, compared to 11.4% of Android devices. These findings were based on an AI-powered mobile dataset, which analysed data from 220 million devices, 360 million apps, and billions of web items. Since 2019, Lookout’s security cloud has identified over 473 million malicious websites, including phishing sites.
Increased Phishing Threats Targeting iOS Devices in Enterprise Environments
iOS devices are particularly attractive to attackers due to their widespread use in enterprise environments. Lookout reported that its user base had more than twice as many iOS devices as Android devices, increasing their vulnerability. In fact, 19% of enterprise iOS devices experienced at least one phishing attempt during each of the first three quarters of 2024, while only 10.9% of enterprise Android devices were exposed to similar attacks. This higher number of iOS devices in the enterprise setting creates more opportunities for cybercriminals to target them.
Lookout also noted a 17% rise in credential theft and phishing attempts in enterprise environments since the previous quarter, along with a 32% increase in malicious app detections. These trends indicate that cybercriminals are altering their tactics, now targeting mobile devices more aggressively at the start of their attacks.
Phishing Attacks Targeting Consumers: Staying Vigilant on iOS and Android Devices
Although the report mainly focuses on enterprise devices, regular users must also remain vigilant. Phishing attacks have grown more sophisticated, with cybercriminals targeting consumers through emails, text messages, and fake websites. Experts warn that these tactics will continue to evolve and become more advanced. Whether using an iPhone or Android device, it’s crucial to stay cautious with links and personal information to protect against data breaches.
