DigitalAI Application Security Threats Report 2025

Keypoints

• Typical cybersecurity reports, such as Digital.ai’s 2025 Application Security Threat Report, are structured into sections including Introduction, Key Findings, Methodology, Industry Trends, Attack Data, Threat Perspectives, Malware, and Conclusions, providing comprehensive insights into attack patterns, threat actors, and regional variations.
• Major statistics reveal a sharp rise in attack frequency, with 82.7% of monitored apps targeted in January 2025—highlighting that mobile platforms (iOS: 88.1%, Android: 90.4%) are the most frequently attacked, marking an increase from earlier periods.
• Key trends show that threats are expanding across industries beyond traditional targets like financial services, now heavily affecting telecom (91%) and automotive sectors (86%), demonstrated by increased sophistication of attacks such as environment manipulation, instrumentation, and code integrity breaches.
• Recurrences in attack themes include vulnerabilities across OS versions, with middle-range Android versions showing the highest attack rates due to their widespread usage and relative vulnerabilities, combined with rising attacks on jailbroken or rooted devices.
• Regional data indicates that EMEA and North America experience higher attack rates (0.69% and 0.64%, respectively) than LATAM and APAC, often linked to stricter regulations and better threat reporting, which reflect greater visibility rather than safety.
• Malware remains a persistent threat, with 1.2% of devices infected—primarily low-threat, but over 6% classified as high-threat malware like trojans and worms, thus presenting ongoing risks for end-users.
• Overall, these patterns emphasize the critical need for organizations to implement layered security techniques, such as runtime protections, code obfuscation, encryption, and continuous monitoring, to protect increasingly targeted applications in a rapidly evolving threat landscape.