Cybersecurity experts on the phone updates everyone should ignore

Unexpected updates or “strange” app requests are often used to trick individuals into downloading malware onto their devices.

Such apps can mimic legitimate tools like file managers, PDF readers, phone cleaners, or even web browsers like Google Chrome, to steal banking details. Once installed, they can appear harmless but later activate harmful features through hidden updates.

Criminals may use sophisticated techniques which overlay fake login screens on top of real banking apps to steal login credentials.

Deceptive “busy” or “waiting” screens may be displayed to mask fraudulent activity.

People may also be prevented from exiting the app or restarting their device.

They may find that excessive permissions, such as “accessibility” access, are requested.

People are being urged by the organisations to be vigilant, particularly when being prompted to re-authenticate during a banking session; encountering unresponsive banking apps showing “busy” messages, installing generic-looking apps such as file managers or phone cleaners; receiving unexpected prompts to install or update Chrome; and being asked to grant unusual permissions, particularly accessibility access.

International crime groups are at the heart of mobile attacks, the organisations said, adding that users in general should be vigilant.

Han Sahin, CEO of ThreatFabric, said: “Just as we’ve learned to be cautious with links, we now need the same vigilance when installing apps. This is the logical next step in staying safe, and public awareness is crucial.”

Garry Lilburn, operations director at CDA, said: “This crime highlights the growing prevalence and sophistication of mobile malware.

“As we work to better understand and disrupt this evolving threat, it’s crucial that financial consumers stay vigilant, follow recommended security tips, and take a moment to verify what’s in front of them – before becoming the next victim of this highly targeted fraud.”

Dianne Doodnath, principal of economic crime at UK Finance, said: “We encourage customers to stay alert to all threats of fraud, including the potential for criminals to trick people into downloading malware onto phones, which could put your personal and financial information at risk of theft.

“It’s important that you keep your phone security system up-to-date and always download from trusted sources to ensure you’re protected from the risk of fraud and data harvesting.”

Mike Haley, CEO of Cifas, said: “The surge in Android malware is not just a tech issue – it’s a growing threat to consumers and to banking services we all rely on. Criminals are evolving their tactics faster than ever, using deception and stealth to bypass traditional security measures.

“The best defence is awareness. If something feels off – an unexpected update, a strange app request – stop before you tap and always seek a second opinion. Education and vigilance are our frontline tools in the fight against fraud.”

How to stay safe

Here are some suggestions from the organisations to help mobile users stay safe:

1. Only download apps from trusted sources.
2. Check app reviews and developer information before installing.
3. Keep your device’s operating system and apps up to date.
4. Report suspect apps or activity to your bank immediately.
5. Be wary of apps requesting unnecessary permissions.