Verizon 2025 Mobile Security Index highlights rise in mobile attacks fueled by AI

The Verizon 2025 Mobile Security Index highlighted a notable rise in mobile device attacks, with 85% of organizations indicating an increase in such incidents. The findings suggest that the growing use of Generative AI (GenAI) is expanding the attack surface, leading 34% of organizations to express concerns over sophisticated AI-powered threats. In response, 75% of organizations reported an increase in mobile security spending over the past year, reflecting the urgency to address these vulnerabilities.

The report identified a critical gap in security measures against AI-assisted attacks, noting that only 17% of businesses have specific controls in place. With 93% of respondents reporting employee use of GenAI on mobile devices, 64% of organizations acknowledged data compromise through GenAI as their top mobile risk. This situation creates a heightened risk environment for businesses.

The Mobile Security Index also pointed to the significant role of human behavior in organizational security, with 80% of surveyed organizations conducting employee smishing tests revealing that 39% of participants clicked on malicious links. Chris Novak, VP of Global Cybersecurity Solutions at Verizon Business, described the current landscape as a “perfect storm,” emphasizing that organizations must rethink security strategies to protect against AI-assisted threats effectively.

Small and medium-sized businesses (SMBs) expressed particular concern, with 57% believing they have fewer resources to combat cybersecurity threats compared to larger enterprises. Approximately 54% of SMBs reported having more at stake in the event of a security breach. Larger enterprises generally implemented more proactive security controls, such as enhanced employee training on mobile security and advanced Multifactor Authentication (MFA) systems.

Finally, as organizations confront increasing security challenges, the index indicated that 63% of respondents experienced major disruptions due to security incidents, including data loss reported by half of the organizations. The need for a multi-layered approach to mobile security has become essential, with integrated strategies enabling businesses to manage risks effectively and maintain operational continuity in a changing threat landscape.