Android users are currently facing a new threat that could potentially transform their devices into money-making tools for cybercriminals. This emerging attack leverages popular applications to install software that engages in ad fraud activities discreetly. While this scheme does not directly cost users money, it can significantly slow down device performance, an undesirable outcome for smartphone owners.
The menace, known as SlopAds, has been amplified by the presence of infected apps on the Google Play Store. Initially identified by the Satori Threat Intelligence and Research Team, it is estimated that around 224 Android apps have been compromised. These apps have collectively amassed over 38 million downloads worldwide.
According to HUMAN’s Satori Threat Intelligence and Research Team, the operation behind SlopAds involves a network of 224 apps that have been downloaded more than 38 million times globally from the Google Play Store. These apps utilize steganography techniques to execute ad fraud by creating hidden WebViews that direct users to fraudster-controlled sites, resulting in fraudulent ad clicks and impressions.
Upon learning of the issue, Google swiftly removed all tainted applications from its platform, preventing new infections. However, existing users who have downloaded these apps may still inadvertently contribute to the illicit activities. To mitigate the risk, users are advised to remain vigilant for any warning alerts.
The Satori Threat Intelligence and Research Team has assured that users with the identified apps installed on their devices will receive notifications prompting them to uninstall the compromised applications. This process is facilitated through Google’s default Play Protect service, ensuring prompt action upon receiving any alerts.
Ad fraud, although seemingly harmless to users, benefits hackers by generating fake clicks in the background. This illicit practice can overload devices, causing performance issues. Google defines ad fraud as the generation of deceptive ad interactions to deceive ad networks into believing that the traffic originates from genuine user interest. This form of invalid traffic is harmful to advertisers, developers, and users, eroding trust within the mobile advertising ecosystem.
