Giveaway Scam Infects 65,000 Devices with Malware

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,172
Content source
https://www.infosecurity-magazine.com/news/giveaway-scam-infects-65k-devices/
A family of Android apps is using the lure of free items to distribute a novel ad fraud botnet.

Victims of the scam are told that they will receive a complimentary gift when they download an app from the Google Play Store. However, the only thing received by victims is an infection of malware that silently loads ads in the background on their smart device.

The ad fraud operation, discovered by White Ops’ Satori Threat Intelligence & Research team, which named it TERRACOTTA, started in late 2019. The team found that by the end of June 2020, more than 65,000 devices had been unwitting participants in the scam, over 5,000 apps had been spoofed, and more than 2 billion bid requests had been generated.

"What makes this unique is that the fraudsters were advanced in knowing how to pull off ad fraud verification plausibly," said a White Ops spokesperson. "This means the ads were never being reported via the Google Play Store for showing ads, nor were users complaining of seeing unwanted ads. Instead, they were lying dormant, and the only 'free product' being delivered to users was a payload of ad fraud malware."
Click to expand...
 
  • Like
  • Wow
  • +Reputation
Reactions: MonSpyder9, brambedkar59, Protomartyr and 7 others
silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
10,172
Google has removed an undisclosed number of Android applications from the official Google Play Store that the company says were part of an ad fraud botnet. Named Terracotta, this botnet was discovered by the Satori mobile security team at White Ops, a security firm specialized in identifying bot behavior.
Click to expand...
www.zdnet.com

Google Play apps promised free shoes, but users got ad fraud malware instead

White Ops discovers a collection of Android apps that installed a hidden browser to load ad-heavy pages and commit ad fraud.
www.zdnet.com www.zdnet.com

www.whiteops.com

TERRACOTTA Android Malware: A Technical Study

The Satori Threat Intelligence & Research Team takes a deep dive into the TERRACOTTA ad fraud operation and its sophistication.
www.whiteops.com www.whiteops.com
 
  • Like
  • Thanks
Reactions: Protomartyr, dinosaur07, upnorth and 4 others
You must log in or register to reply here.

Similar threads

vtqhtr413
    • +Reputation
    • Like
How scammers create the most convincing internet cons
Replies
0
Views
590
News Archive
vtqhtr413
vtqhtr413
[correlate]
    • Like
    • Wow
AVrecon malware infects 70,000 Linux routers to build botnet
Replies
0
Views
1,110
News Archive
[correlate]
[correlate]
Gandalf_The_Grey
Security News Free VPN apps on Google Play turned Android phones into proxies
Replies
0
Views
1,007
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top