Malware targeting personal data hits food delivery services: Kaspersky

The Kaspersky 2025 Security Bulletin notes that shopping and food ordering via mobile apps are routine user behaviors.

However, 2025 demonstrated that even downloading a seemingly legitimate app from an official app store does not guarantee safety, nor does it ensure that user data and financial credentials will not be compromised.

The report found that 14.41 percent of users in the retail sector faced web threats, while 22.20 percent of users in the retail sector faced on-device threats.

Meanwhile, ransomware detections in the B2B sector increased due to a single dominant actor.

The number of unique users in the retail & e-commerce sector who encountered ransomware detections increased by 152 percent in 2025 compared to 2023.

The most significant growth occurred during the 2024-2025 period and is largely attributable to the rapid spread of the Trojan-Ransom.Win32.Dcryptor family, which became highly prevalent across the retail and e-commerce sector in some of the analyzed markets.

This malware is a trojanized ransomware variant that leverages the legitimate DiskCryptor utility to encrypt disk partitions on victim systems.

Phishing activity in the online retail segment also stood out.

Despite being a long-established attack technique, phishing remains highly prevalent in the context of online purchasing.

From November 2024 through to October 2025, Kaspersky products blocked over 6.6 million attempts to access phishing links targeting users of online stores, payment systems, and delivery services.

Of these attempts, 50.58 percent targeted online shoppers, 27.3 percent impersonated payment systems, and 22.12 percent targeted users of delivery companies.

Kaspersky experts warn that seasonal peaks in online shopping consistently provide attackers with predictable opportunities to scale user-focused attacks.

Periods of heightened promotional activity lower user vigilance and allow familiar phishing and spam scenarios to blend into legitimate marketing traffic, increasing their overall effectiveness.