Close Menu
Apps

Massive ad fraud scheme targeting over 11 million devices with 1,700 spoofed apps

Delbert Williams IIBy No Comments2 Mins Read

[ad_1]

January 23, 2023Rabbi LakshmananMobile Security / Malvertising

Massive ad fraud scheme

Researchers spoofed over 1,700 applications from 120 publishers and stopped a “massive” ad fraud scheme that affected nearly 11 million devices.

“VASTFLUX is a malvertising attack that injects malicious JavaScript code into digital ad creatives, allowing fraudsters to stack numerous invisible video ad players on top of each other to register ad views.” said fraud prevention company HUMAN.

The name of this operation comes from the use of DNS evasion techniques called Fast Flux and VAST (digital video ad serving templates used to serve ads to video players).

This sleight of hand specifically exploited the restricted in-app environment that runs ads on iOS to bid to display ad banners. If it wins the auction, it uses a hijacked ad slot to inject malicious JavaScript and establish a connection with a remote server to retrieve the list of targeted apps.

contains bundle identities belonging to legitimate apps and performs what are known as app spoofing attacks. In this attack, a rogue app masquerades as a highly rated app in an attempt to trick advertisers into bidding on ad space.

ad fraud scheme

According to HUMAN, the ultimate goal was to register views of up to 25 video ads by layering them in a way that was completely invisible to users and generated illegal revenue.

“But it’s more than just stacked ads,” the company said. “Many of the ads that may be displayed on a user’s device at once continue to load new ads until the ad slot containing the malicious ad code is closed.”

ad fraud scheme

“The attackers behind the VASTFLUX scheme are clearly familiar with the digital advertising ecosystem,” he adds, adding that the campaign uses an endless stream of ads to trick both the advertising companies and the apps displaying the ads. It states that it also rendered a “playlist”.

The removal of VASTFLUX arrives three months after the suspension of Scylla, a scam targeting advertising software development kits (SDKs) within 80 Android apps and 9 iOS apps exposed on official storefronts .

VASTFLUX, which generated over 12 billion bid requests per day at its peak, is just the latest in a string of recently shut down ad fraud botnets, joining 3ve, PARETO and Methbot.

Did you find this article interesting?Please follow us twitter and LinkedIn to read more exclusive content we post.



[ad_2]

Source link

Share.

Born in the early 80s in Milwaukee, Wisconsin, Delbert Williams II has always had a passion for writing. Even in high school, he earned excellent grades in English and writing classes. After attending John Marshall High School, he graduated from Project Stay Alternative High School in Milwaukee. From there, Delbert attended Milwaukee Area Technical College, where he studied music and communications. While he enjoyed these fields, his love for writing remained strong. In 2019, Delbert founded Hard Stack Street Mag, a publication that quickly gained a following for its unique and engaging content. As the founder and editor-in-chief of the magazine, he has worked tirelessly to produce quality articles that cover a wide range of topics, including music, art, culture, and politics. Now 42 years old, Delbert continues to pursue his passion for writing and journalism. Through Hard Stack Street Mag, he has created a platform that allows him to share his voice and perspective with readers from all over the world. With a strong background in writing and a deep understanding of the power of storytelling, Delbert Williams II is a writer to watch. He is dedicated to producing content that is both informative and engaging, and he is committed to using his platform to shine a light on important issues that are often overlooked by mainstream media.

Related Posts

Add A Comment

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.