Cyberattacks targeting Android users through near-field communication (NFC) technology have surged by 188 percent during the first four months of 2026, according to new data released by cybersecurity firm Kaspersky.
The company said its security solutions blocked approximately 35,600 attacks linked to Android malware families that abuse NFC functionality between January and April 2026.
During the same period last year, more than 12,300 such attacks were detected and blocked, highlighting a sharp increase in activity.
Researchers identified several malware families behind the attacks, including SuperCard X, PhantomCard, NGate, and multiple malicious variants of the NFCGate tool. These threats are designed to steal banking information and facilitate fraudulent financial transactions through contactless payment technology.
According to Kaspersky, cybercriminals are primarily using two attack methods. In the first, known as Direct NFC, victims are contacted through messaging platforms and persuaded to install malware disguised as legitimate applications, often related to banking or financial services.
Attackers then convince users to tap their bank cards against infected smartphones and enter their PIN codes, allowing sensitive card data to be captured.
The second method, called Reverse NFC, has become increasingly common. In this scheme, victims are tricked into installing a malicious application and setting it as the default contactless payment service on their device.
The infected phone then transmits an NFC signal that automated teller machines recognize as a scammer-controlled payment card. Victims are subsequently persuaded to deposit funds, believing they are transferring money to a secure account, when in reality the funds are sent directly to criminals.
Security researchers warned that Reverse NFC attacks are particularly difficult to detect because victims themselves authorize the transactions, making fraudulent transfers appear legitimate.
The warning comes as contactless payments and digital financial services continue to gain popularity worldwide, including in Pakistan. Growing smartphone adoption and increased use of mobile banking applications have expanded the potential target base for cybercriminals seeking to exploit unsuspecting users.
Cybersecurity experts have advised consumers to avoid downloading applications from unofficial sources, be cautious of unsolicited messages involving banking services, and never follow instructions from unknown individuals regarding financial transactions or ATM operations.
Users are also encouraged to keep their devices updated and use trusted mobile security solutions to reduce the risk of compromise.
Stay Connected with ProPakistani
Get the latest tech news, telecom insights, and product launches wherever you prefer.
Add ProPakistani to Preferred Sources and see more of our stories in Google Search and Top Stories.
