In a joint study conducted by Rustore and F6, it was found that 78% of users have uninstalled applications at least once due to concerns about their reliability. More than half of the respondents, 53%, admitted to installing apps from unofficial sources, putting their devices at risk of being infected with malicious software such as CraxSSrat and modified versions of nfcgate.
Despite these alarming statistics, a significant portion of respondents demonstrate a conscious approach to digital security. A whopping 90% reported avoiding suspicious links, 84% use different passwords for various services, 78% restrict app access to their devices during installation, and 70% have activated two-factor authentication. However, it was noted that 10% of respondents are unaware of the presence of this security feature.
Furthermore, the study revealed that 47% of users prefer to only install applications from official stores, while 16% perform device security checks after installation, leaving 10% who do not take any protective measures.
Rustore issued a reminder that downloading programs from questionable sources poses a serious threat, as viruses and other harmful software are often disguised as legitimate apps. Users were strongly advised to download applications only from trusted sources.
F6 highlighted the fact that cybercriminals are increasingly targeting users who download apps from unofficial stores, forums, and through SMS. Among the most hazardous threats identified for 2025 are Android-Troi Craxsrat and malicious versions of NFCGATE, a legitimate tool used for stealing funds from bank accounts. In March 2025, approximately 200 thousand infected Android devices in Russia were found to have malicious programs disguised as useful applications.
These malicious programs are often disguised as apps from government agencies, fictitious mobile operators, antivirus solutions, contactless payment solutions, and unofficial versions of popular messaging platforms.
F6 also issued a warning that installing apps from unofficial sources, especially on Android devices, significantly raises the risk of remote access infections. Such programs enable cybercriminals to control a victim’s device without their knowledge. Attackers frequently embed harmful software into modified versions of popular applications and distribute them through third-party stores or forums.
The study, which saw the participation of 3200 individuals, was conducted using the Hitech Mail platform.