Apps available on Google Play, amassing a staggering 38 million downloads, implicated in a vast ad fraud scheme
In a significant discovery, security researchers have unveiled one of the largest mobile ad fraud schemes in recent years. The operation, named SlopAds, was responsible for generating fake ad views and clicks, stealing advertising dollars without offering real engagement to brands.
At its peak, SlopAds was responsible for a staggering 2.3 billion bid requests per day, affecting 228 countries and territories worldwide. The fraud was carefully engineered to remain undetected, activating only apps downloaded after clicking on a SlopAds-controlled ad.
The fraudulent apps, which had an AI theme, were found on the Google Play Store and had over 38 million downloads worldwide. SlopAds hid its fraud mechanisms using steganography and WebViews, simplified browsers embedded in apps. These tools allowed the apps to open hidden windows, navigate to cashout sites controlled by fraudsters, and rack up fake ad impressions.
Encrypted instructions, delivered via Google's Firebase platform, directed the apps to fraud modules, cashout sites, and scripts needed to generate revenue. One of the key cash-out methods involved HTML5 (H5) games and news sites owned by the fraudsters.
The company behind the affected apps is not explicitly mentioned in the available search results. However, Google has taken immediate action, removing all the fraudulent apps and activating Play Protect, its automatic defense system that warns users and prompts them to uninstall harmful apps.
Other top targets of SlopAds include India, the US, Canada, South Africa, the Netherlands, Mexico, Brazil, Singapore, and the Philippines. In some cases, the fraud management module was hidden inside PNG images.
Advertisers paid for impressions and clicks that never reached a real audience, resulting in millions of dollars in wasted ad budgets. This is not the first time fraudsters have hidden under apps on the Google Play Store to defraud or attack users.
The campaign was uncovered by HUMAN's Satori Threat Intelligence team and reported to Google. As a precaution, a warning and prompt to uninstall the identified apps will be received by all users who have them installed on their device.
It is essential for users to be vigilant and install apps only from trusted sources. By doing so, they can help prevent falling victim to such fraudulent activities and ensure a safer digital experience.
Read also:
- Industrial robots in China are being installed at a faster rate than in both the United States and the European Union, as the global market for these robots faces a downturn.
- Hyundai N affirms transition to hybrid performance-centric models, initiating with Tucson N
- EAFO Research Uncovers Crucial Elements in Electric Vehicle Adoption within the EU
- Stock markets in India anticipated a moderate opening, influenced by mixed signals from global markets.
