Mobile devices: primary vector

The National Cyber Security Institute issued a report titled “2026 Mobile Security Trends: Users and Emerging Risks,” datelined San Francisco and distributed via Plentisoft/MarketersMEDIA on March 19, 2026. The press release lists specific categories of sensitive data concentrated on smartphones—banking information, authentication credentials, business communications and personal records—as factors that increase mobile risk exposure. The report documents a tactical shift toward automated, data‑driven personalization in mobile attacks, noting attackers “analyz[e] publicly available information and digital behavior patterns” to improve phishing success rates. Practical mitigations called out in the release include end‑user controls such as installing apps only from verified sources, auditing app permissions, enabling multi‑factor authentication, using unique passwords and applying regular OS updates. The announcement highlights AI‑enabled voice replication and automated communication tools as emergent enablers of mobile social‑engineering campaigns that defenders must account for in 2026. The release was published through Plentisoft’s newswire channels and syndicated across multiple outlets—including The Manila Times, Markets Insider/Business Insider presswire, USA Today press‑release distribution and Barchart—indicating broad distribution of the institute’s findings. (plentisoft.com)