42% of organizations conduct code reviews and security testing.

26% of respondents ranked app tampering / code injection as their biggest manipulation challenge currently in the gig economy.

29% of manipulation concerns in the gig economy by 2026 will be related to app tampering/code injection.

Fewer than half of the CISOs, AppSec managers and developers report deploying foundational security tools like dynamic application security testing (DAST) or infrastructure-as-code scanning.

Code leakage was the most common type of sensitive data sent to GenAI tools.

55% of respondents conduct independent code reviews.

Integrity attacks (where app code is modified or repackaged) affected 23.3% of iOS apps

Instrumentation attacks (which involve dynamic code modification or hooking frameworks like Frida) occurred at a rate of 82% on Android.

Instrumentation attacks (which involve dynamic code modification or hooking frameworks like Frida) occurred at a rate of 44% on iOS.

Integrity attacks (where app code is modified or repackaged) affected 52% of Android apps