Skip to main content

Tag: ad fraud

10 articles

Browser extension icon on a computer screen with abstract code in the background.

Microsoft Disrupts StegoAd Malware Operation in Edge Extensions

Microsoft cracked down on a sneaky malware operation called StegoAd, which had infected up to 2.6 million installs across 119 Edge extensions with hidden code that lay dormant for days before stealing credentials and committing ad fraud. The cleverly concealed code was tucked away in ordinary image and font files, making it a challenge to detect.

Analyst 207
Person holding smartphone surrounded by fake software update prompts and alerts.

Malicious Android Apps Fuel 659M Daily Ad Fraud Bid Requests

Meet Trapdoor, a massive ad fraud scam driven by 455 malicious Android apps that generated a whopping 659 million daily bid requests at its peak, all while hiding in plain sight as harmless utilities like PDF viewers and file managers. These fake apps tricked users into installing malware, unleashing a hidden ad fraud operation controlled by 183 threat actor-owned domains.

Analyst 207
Smartphone lies on a park bench surrounded by scattered papers and app icons, with a city street in the background.

Trapdoor Android Ad Fraud Scheme Exposes 455 Malicious Apps

Meet Trapdoor, a massive Android ad fraud scheme that used 455 malicious apps to generate a staggering 659 million daily bid requests, fueling a self-sustaining machine that turned innocent installs into big bucks. This complex operation was uncovered by HUMAN's Satori Threat Intelligence and Research Team, shedding light on a pipeline for multi-stage fraud.

Analyst 207
Shadowy figure lurks near glowing laptop and smartphone screens in a dark setting.

Malicious Chrome Extensions Infiltrate Web Store, Compromise User Data

Malicious Chrome extensions, masquerading as harmless tools, have infiltrated the official Web Store, putting millions of users' data at risk by stealing sensitive tokens, planting backdoors, and running ad fraud. Over 100 of these rogue add-ons have been identified, highlighting a growing threat in a marketplace we thought was safe.

Analyst 207
Dimly lit room with flickering computer screen, clutter, and eerie smartphone image.

AI-Driven Scam Exploits Google Discover with AI-Generated Pushpaganda

Beware of a cunning AI-driven scam that's invading Google Discover with fake news stories engineered to follow you around the web and beg for money. Cybersecurity researchers have uncovered this sinister scheme, which uses AI-generated content and search engine manipulation to deliver scareware and drain your wallet.

Analyst 207
Most Parked Domains Exclusive: Malicious Content Surge

Most Parked Domains Exclusive: Malicious Content Surge

Surprising new data shows most parked domains are now hosting malicious content—discover why parked domains are becoming a growing security risk and what easy steps you can take to stay protected.

Analyst 207
Android TV Exclusive: Dangerous Botnet Risk Revealed

Android TV Exclusive: Dangerous Botnet Risk Revealed

Think that bargain Android TV box is just for streaming? Security researchers warn Superbox devices can quietly turn your home network into a botnet relay, routing criminal traffic and exposing you to fraud and legal trouble.

Analyst 207
Android TV streaming box: Exclusive Dangerous botnet alert

Android TV streaming box: Exclusive Dangerous botnet alert

Think twice before buying a bargain Android TV streaming box—some models quietly turn your home network into a botnet relay, routing illicit traffic that can slow your connection, invade your privacy and even expose you to legal risk. Here’s what to watch for so convenience doesn’t end up costing you more than you bargained for.

Analyst 207
AI Advertising Company Hacked: Exclusive Devastating Impact

AI Advertising Company Hacked: Exclusive Devastating Impact

When you cant tell whos behind a promoted post, trust evaporates — and a recent hack of an AI-driven advertising startup shows just how easy it is for attackers to hijack thousands of AI-run accounts and push undisclosed ads. This incident lays bare an adtech supply chain that favors automation and conversion over transparency and security.

Analyst 207
IIS server hijacking: Stunning Risky Threat

IIS server hijacking: Stunning Risky Threat

A Chinese‑speaking cybercrime group has been quietly hijacking Microsoft IIS servers to inject poisoned pages that hijack search results and steer real traffic to scams and affiliate schemes. If you run IIS sites, now’s the time to patch, lock down admin access, and add file‑integrity and content monitoring to stop stealthy SEO fraud before it ruins your reputation.

Analyst 207