Zimperium News
Building on earlier research published in October 2025, Zimperium announced that its zLabs team has uncovered a significantly enhanced variant of ClayRat, an Android spyware family first detailed in the technical brief “ClayRat: A New Android Spyware Targeting Russia”. While the original ClayRat strain was able to exfiltrate SMS messages, call logs, notifications, device data, take photos, and send mass SMS or place calls, effectively allowing infected devices to become distribution...
Zimperium, the world's pioneer in mobile security, now announced that Alistaire Davidson has joined the company as Chief Financial Officer, reporting directly to CEO Shridhar Mittal. Alistaire brings more than 20 years of finance leadership experience across private equity–backed and public software companies. Alistaire most recently served as Regional CFO, Americas at The Access Group, where he led the post-acquisition integration of two strategic business units. Prior to The Access Grou...
Zimperium, the global pioneer in mobile security, revealed findings from its zLabs team showing that thousands of popular Android applications — including top travel, airline, and weather apps — are still using an outdated mapping component that could put users and enterprises at risk. The investigation, titled “Follow the Map to Enterprise Risk: What’s Inside Popular Android Apps,” found that a legacy library known as libmapbox-gl.so, once part of Mapbox GL Native...
Zimperium, the global pioneer in mobile security, released new research from its zLabs team revealing a sharp rise in mobile threats tied to the holiday shopping season. The Mobile Shopping Report: From Carts to Credentials highlights how cybercriminals are exploiting the seasonal surge in e-commerce and mobile app activity to target both consumers and enterprises. According to zLabs’ analysis, mishing (mobile phishing) remains the most widespread and effective mobile attack vector. Smis...
zLabs researchers have uncovered Fantasy Hub, an Android Remote Access Trojan (RAT) sold on Russian-language channels as a Malware-as-a-Service (MaaS) subscription. The spyware offers a full suite of espionage and device-control features, including SMS, contact, and call-log theft; live audio/video streaming; and fake banking windows designed to steal credentials. Unlike isolated malware kits, Fantasy Hub is a turnkey service complete with seller documentation, how-to videos, and a Telegram-ba...
Zimperium, the world pioneer in mobile security, highlighted the growing threat of mobile bots operating inside trusted apps. These bots represent a new form of automation that bypasses traditional defenses, such as CAPTCHAs, rate limits, and MFA, making them nearly impossible to distinguish from legitimate users and enabling fraud at scale. Unlike web-driven bots that flood networks with suspicious traffic, mobile bots run on the client side, inside the app itself. By exploiting APIs, ses...
Zimperium zLabs published new findings showing a rapid, global increase in NFC relay malware that abuses Android’s Host Card Emulation (HCE) to harvest payment data and complete fraudulent “tap-to-pay” transactions. First observed in April 2024 as isolated samples, this campaign family has expanded to more than 760 malicious apps, leveraging 70+ command-and-control servers, dozens of Telegram bots/channels, and localized impersonation of banks and government services across R...
Zimperium, the world's pioneer in mobile security, announced new research from its zLabs team exposing ClayRat, a rapidly expanding Android spyware campaign targeting Russian users. Disguised as popular apps, such as WhatsApp, TikTok, Google Photos, and YouTube, ClayRat steals sensitive information, including SMS, call logs, device data, and front-camera photos. New obfuscation layers While exploiting Android’s default SMS handler role to bypass security prompts While exploiting Androi...
Zimperium, the pioneer in mobile security, releases new research from its zLabs team revealing alarming weaknesses in mobile Virtual Private Network (VPN) applications. While VPNs are marketed as essential privacy tools, Zimperium’s analysis of 800 free Android and iOS apps shows that many actually put users, and the enterprises they work for at greater risk. Among the findings: 25% of iOS VPN apps lacked a valid privacy manifest, violating Apple requirements and leaving users in the...
Zimperium, the world pioneer in mobile security, is warning organizations about the growing risks posed by rooting and jailbreaking tools, which continue to expose mobile devices to severe security vulnerabilities. These tools, often developed by independent developers without proper security oversight, enable unauthorized access to mobile systems and can be exploited by cybercriminals. Zimperium’s research Zimperium’s research has highlighted how modern rooting frameworks, such...
Zimperium, the global pioneer in mobile security, issued a stark warning to organizations worldwide: mobile-based credential theft is accelerating, and the wave is far from over. Looking back over the past year, Zimperium’s global telemetry revealed more than 2,400 variants of mobile malware specifically engineered to steal login credentials and intercept multi-factor authentication (MFA) codes. These attacks are powered by mishing (mobile focused phishing) campaigns and sideloaded apps t...
Zimperium, the world's pioneer in mobile security, announced new findings from its zLabs team on an evolving mobile banking trojan dubbed DoubleTrouble. The malware, which disguises itself using random two-word method names, has rapidly grown in sophistication—adding screen recording, advanced keylogging, and new UI overlay capabilities designed to steal credentials and manipulate infected devices. Discord-hosted APKs Initially spread viaphishing sites posing as European banks, Do...
Zimperium, the world pioneer in mobile security, announced that its zLabs threat research team has uncovered a highly coordinated and emotionally manipulative malware campaign that is targeting mobile users through fake dating and social networking apps. The campaign, identified as SarangTrap, has already leveraged over 250 malicious Android apps and more than 80 phishing domains, all designed to steal sensitive data while masquerading as trusted platforms. Legitimate dating services These a...
As travel surges this summer, Zimperium, the pioneer in mobile security, is sounding the alarm on escalating mobile cyber threats targeting employees on the move. According to new threat intelligence from Zimperium, over 5 million unsecured public Wi-Fi networks have been detected globally since the beginning of 2025—with a staggering 33% of users still connecting to these open networks, putting enterprise data at immediate risk. Ideal attack surface for cybercriminals “Mobile dev...
Zimperium, the global pioneer in mobile security, announces the discovery of a new, highly evasive variant of the Konfety malware targeting Android devices. Identified by Zimperium’s zLabs team, this latest version leverages advanced obfuscation and ZIP-level evasion techniques, making it significantly more difficult to detect and analyze than previous iterations. Konfety malware campaign The Konfety malware campaign uses a deceptive dual-app strategy—leveraging the same package n...
Zimperium, the world pioneer in mobile security, reveals new zLabs research detailing an advanced evolution of the GodFather Android banking Trojan that weaponizes on-device virtualization to hijack nearly 500 legitimate mobile applications. The technique allows attackers to run the real app inside a malicious sandbox, capture every tap and credential in real time, and bypass traditional overlay-based defenses. GodFather Android banking Trojan The following are some features of the GodFa...
As the global pioneer in mobile security, Zimperium, warns that mobile rooting and jailbreaking remain a persistent and evolving threat to enterprises worldwide. Rooted and jailbroken mobile devices bypass critical security protocols, leaving organizations vulnerable to mobile malware, data breaches, and full system compromises. Cellphone security at risk Rooted Android cellphones face 3.5 times more malware attacks compared to non-rooted devicesData from Zimperium’s Labs te...
Zimperium, a pioneer in mobile security, announced that it is enhancing detection and response capabilities of security teams by integrating with the industry-pioneering CrowdStrike Falcon® cybersecurity platform. This new integration, now available on the CrowdStrike Marketplace, enables seamless sharing of mobile threat intelligence from Zimperium’s Mobile Threat Defense platform to CrowdStrike Falcon® Next-Gen SIEM. Zimperium's 2024 Threat Report According to&...
Zimperium, the pioneer in mobile security, released new research highlighting the evolving landscape of mobile phishing attacks. The data-driven analysis of mobile phishing vectors in 2024 underscores an urgent need for organizations to adopt mobile-specific security strategies to combat these increasingly sophisticated threats, as evidence shows that attackers have moved to a ‘mobile first’ strategy to penetrate corporate networks and sensitive data. Key findings from Zimper...
Zimperium, the world pioneer in mobile security, has uncovered an advanced mishing (mobile-targeted phishing) campaign impersonating the United States Postal Service (USPS), exclusively targeting mobile devices. Spearheaded by Zimperium’s zLabs threat research team, the investigation reveals an unprecedented method of obfuscation used to deliver malicious PDF files designed to steal credentials and compromise sensitive data. Risk of data breach The campaign exploits the trust that...
Zimperium, the industry pioneer in mobile security, announced the availability of its mobile security portfolio in AWS Marketplace, a digital catalog with thousands of software listings from independent software vendors that make it easy to find, test, buy, and deploy software that runs on Amazon Web Services (AWS). AWS Marketplace listing Zimperium’s new AWS Marketplace listings include its Mobile Threat Defense (MTD) solutions and its Mobile Application Protection Suite (MAPS). By of...
Zimperium, the global pioneer in mobile security, is proud to announce that it’s collaborating with Okta, the independent identity provider to deliver a significant advancement in identity threat protection for mobile devices. By integrating Zimperium Mobile Threat Defense (MTD) with Okta Identity Threat Protection with Okta AI, the companies are setting a new standard in continuous risk monitoring and enabling automated threat response, providing organizations with unparalleled mobile se...
Zimperium, a global pioneer in mobile security, is thrilled to announce the appointment of Michael Williams as the new Chief Marketing Officer (CMO). With an illustrious career spanning over two decades in cybersecurity marketing, Michael brings a wealth of experience and a proven track record of driving growth and innovation. Michael Williams joins Zimperium from KnowBe4, the world pioneer in security awareness training, where as CMO he helped lead the company through a successful IPO and acqu...
Zimperium, the only mobile-first security platform for mobile devices and mobile apps, welcomes Chris White as Chief Revenue Officer and Anupam Bandyopadhyay as Senior Vice President of Engineering. These new executives will accelerate global revenue growth, drive customer acquisition and retention, and advance platform innovation as part of the company’s mission to help organizations protect mobile endpoints and apps from cyber threats. Chris White Chris White joins Zimperium from Druv...
Zimperium, the only mobile-first security platform for mobile devices and mobile apps announced its participation in the Microsoft Security Copilot Partner Private Preview. Zimperium was selected based on their proven experience with Microsoft Security technologies, willingness to explore and provide feedback on cutting-edge functionality, and close relationship with Microsoft. Mobile endpoints and applications Zimperium is committed to securing mobile-powered businesses and protecting mobile...
Continuing its commitment to protecting all mobile endpoints and mobile apps from a single platform, Zimperium announced the expansion of its award-winning application shielding solution with a no-code option. The no-code offering is designed for organizations that require fast time to market or have limited development resources. No-code application shielding The new no-code application shielding offering joins the platform’s suite of mobile application security solutions aimed a...
Zimperium, the only mobile-first security platform for mobile devices and mobile apps, released its highly anticipated Global Mobile Threat Report 2023. This year’s report reveals a continued growth toward mobile-powered business, along with the increasingly sophisticated security risks facing it, including spyware, phishing, and ransomware. The Global Mobile Threat Report 2023 examines the most important trends that shaped the mobile security landscape over the last year and d...
Quadrant Knowledge Solutions announced that it has named Zimperium as a 2023 technology leader in the SPARK Matrix™: In-App Protection, Q2 2023. The Quadrant Knowledge Solutions SPARK Matrix™ includes a detailed analysis of the global market dynamics, vendor landscape, and competitive positioning. The study also provides competitive analysis and ranking of the pioneering In-App Protection providers in the form of the SPARK Matrix™. The study also provides strategic information...
Zimperium, the pioneering mobile security solution for endpoints and apps, announced the launch of the Zimperium Mobile-First Security Platform™. This single platform unifies Zimperium Mobile Threat Defense (MTD) - formerly known as zIPS - and Mobile Application Protection Suite (MAPS), unleashing powerful new features designed for teams who bear security responsibility across the entire mobile security spectrum. Through a ‘single pane of glass’, customers now have centralize...
Zimperium, the mobile security platform purpose-built for enterprise environments announced that Sammie Walker has joined the company as chief marketing officer (CMO). In this role, Sammie will be responsible for driving growth and awareness of Zimperium’s mobile security platform as the company scales to provide organizations worldwide with protection against the increasing volume and severity of mobile threats. To support this growth, Zimperium continues investing in its team and leader...
