Cyber attackers are once again focusing on Android devices to deceive unsuspecting users into divulging their personal and financial details.
Individuals are advised to promptly uninstall compromised apps associated with a new scam where hackers engage in a sophisticated form of advertising fraud. By inundating apps with malicious advertisements, hackers can impede the performance of the compromised devices while profiting themselves.
The recent assault, named ‘SlopAds’, was discovered by the Satori Threat Intelligence and Research Team. Researchers identified 224 Android apps affected by this attack, collectively downloaded over 38 million times via the Google Play Store.
The security experts from the team uncovered a sophisticated ad fraud and click fraud operation named SlopAds. This operation involves a network of 224 apps, downloaded over 38 million times from the Google Play Store across various countries and territories. These apps execute ad fraud using steganography techniques, creating hidden WebViews to direct to the hackers’ cashout sites, generating fraudulent ad impressions and clicks. The operation is characterized by an AI theme, hence the name.
Google has successfully removed all problematic apps to prevent new users from falling prey to ad fraud. Users who may have downloaded apps containing the SlopsAds bug will receive alerts prompting them to delete the apps.
To protect against future attacks, Android users are advised to keep Google’s Play Protect feature activated within the app store. This feature warns users of potentially corrupted applications before installation and blocks any apps exhibiting behavior associated with SlopAds.
Ad fraud not only impacts device users but also legitimate advertisers and developers as cybercriminals deceive networks into displaying their infected ads. Google emphasizes that ad fraud, a form of invalid traffic, occurs when developers manipulate ads in prohibited ways, leading to long-term mistrust in the mobile Ads ecosystem.
Android users are urged to act quickly and remove any flagged infected apps to secure their devices.