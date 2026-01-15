Report shows rising phishing, malicious apps, and mobile-targeted social engineering in enterprise environments

BOSTON--(BUSINESS WIRE)--Lookout, Inc., the leader in mobile threat defense, today released the Lookout Mobile Threat Landscape Report for Q3 2025, revealing that mobile risk has transitioned from episodic to a persistent, structural exposure for enterprises. The report highlights how threat actors are increasingly relying on scalable mobile‑first tactics, including social engineering, phishing, and credential theft, to breach enterprise defenses and gain access to sensitive corporate data. These findings reinforce that mobile devices — the gateways to business risk — must be central to any modern enterprise security strategy.

The Lookout Mobile Threat Landscape Report is based on analysis from the Lookout Security Cloud, which draws on billions of data points across devices, apps, and web activity to identify and stop mobile threats. For Q3 2025, Lookout observed over 1.2 million enterprise‑focused phishing and malicious web attacks and consistently elevated global encounter rates of nearly 13% across devices, underscoring mobile’s role as a primary initial access vector into corporate systems. The data also shows that iOS devices experienced significantly higher phishing encounter rates than Android devices, reflecting enterprise usage patterns and attacker focus on identity‑based exploitation.

“In today’s digital enterprise, mobile devices are no longer peripheral; they’re the gateways to business risk, with access to collaboration platforms, and cloud applications,” said Christoph Hebeisen, director of security intelligence research at Lookout. “Attackers are exploiting mobile workflows at scale — often without delivering malware at the outset — and effective defense demands comprehensive visibility and mobile‑first threat intelligence.”

Lookout data for Q3 2025 also reveals:

Mobile phishing and social engineering have become structurally elevated threats, with attackers exploiting legitimate authentication and messaging workflows rather than relying solely on malware.

iOS devices showed a materially higher phishing encounter rate than Android, driven by their common assignment to executives and high‑value enterprise users.

Mobile device management (MDM) reduces risk modestly but does not fully prevent phishing exposure, particularly on widely used messaging platforms.

Browser and app vulnerabilities continue to be exploited, with delayed patch adoption creating persistent exposure across mobile environments.

More than 71,000 malicious apps were detected on enterprise devices in Q3 2025, illustrating the ongoing presence of covert surveillance and data‑theft tooling.

The Evolution of the Modern Attack Surface and Enterprise Security Strategy

Lookout’s Q3 2025 findings illustrate that mobile risk signals often appear earliest in the attack lifecycle — from credential capture to identity abuse — before threats advance into core enterprise systems. As attackers weaponize AI to scale social engineering and target trusted mobile communication channels, traditional endpoint‑focused defenses are increasingly blind to these critical signals. Modern security strategies must therefore integrate mobile telemetry and threat intelligence to detect early indicators of compromise and adapt to an evolving mobile attack surface.

