Friday, April 18, 2025
Follow us On Linkedin
HomeAndroid8 Popular apps With More Than 2 Billion Downloads Caught in Massive...

8 Popular apps With More Than 2 Billion Downloads Caught in Massive Ad Fraud Scheme

AndroidCyber Security News

Published on

By Gurubaran
8 Popular apps With More Than 2 Billion Downloads Caught in Massive Ad Fraud Scheme

Supply Chain Attack Prevention

SIEM as a Service

Follow Us on Google News

Eight apps in Google play with more than 2 billion downloads caught abusing user permissions to generate ad revenue.

Among the eight apps such as malicious apps, seven apps owned a Chinese company called company Cheetah Mobile and another app owned by Kika Tech, a Chinese based company.

According to BuzzFeed News report the ad fraud scheme tracked the user behavior in dozens of an Android app and generate a fake revenue, Google estimated the loss close to $10 million stolen from it and their ad partners by generating fake traffic.

- Advertisement - Google News

Kochava uncovered the fraud scheme, according to their analytics report, both the Cheetah and Kika company apps tracked users when they are downloaded new apps and use their to claim the credit, this process called as click flooding and click injection.

Following are the apps involved in the ad fraud scheme

Clean Master
Security Master
CM Launcher 3D
Kika Keyboard
Battery Doctor
Cheetah Keyboard
CM Locker
CM File Manager

Credits: BuzzFeed News

Ad Fraud Scheme – Eight apps

These apps by having the permission to monitor new app install, the Cheetah apps look for new installation as soon as they detect the new downloads the Cheetah app looks for the active bounties for the downloaded app.

Credits: BuzzFeed News

Then the Cheetah apps will send fake click with relevant attribution for app installation and gain the bounty, even though the app not played any role in the installation, which is referred to as click injection.

Simmons from Kochava said the apps from Cheetah are programmed to open the newly downloaded apps without user consent, this function added to Cheetah apps in order to increase the possibility of getting credits.

The Kika Keyboard executes both the click flooding and clicks injection. It also listens for the user searches for the app in the play store when the keyboard is active.

Now the Battery Doctor and CM Locker apps are removed from the Play store.

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity updates also you can take the Best Cybersecurity courses online to keep your self-updated.

Millions of PornHub Users Hijacked by ad Fraud Malware Infections

Cyber Criminal’s Earn $5 Million Daily By Fraudulent Video Ad “Methbot”- A Shocking Report

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Cyber Attack

Ransomware Attacks Surge 126%, Targeting Consumer Goods and Services Sector

The cybersecurity landscape witnessed a dramatic escalation in ransomware attacks, marking a concerning trend...
cyber security

CrazyHunter Hacker Group Exploits Open-Source GitHub Tools to Target Organizations

A relatively new ransomware outfit known as CrazyHunter has emerged as a significant threat,...
Cyber Attack

Threat Actors Leverage Cascading Shadows Attack Chain to Evade Detection and Hinder Analysis

A sophisticated multi-layered phishing campaign was uncovered, employing a complex attack chain known as...
cyber security

Microsoft Vulnerabilities Reach Record High with Over 1,300 Reported in 2024

The 12th Edition of the Microsoft Vulnerabilities Report has revealed a significant surge in...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

Register Now

More like this

Cyber Attack

Ransomware Attacks Surge 126%, Targeting Consumer Goods and Services Sector

The cybersecurity landscape witnessed a dramatic escalation in ransomware attacks, marking a concerning trend...
cyber security

CrazyHunter Hacker Group Exploits Open-Source GitHub Tools to Target Organizations

A relatively new ransomware outfit known as CrazyHunter has emerged as a significant threat,...
Cyber Attack

Threat Actors Leverage Cascading Shadows Attack Chain to Evade Detection and Hinder Analysis

A sophisticated multi-layered phishing campaign was uncovered, employing a complex attack chain known as...

GBHackers on Security is a top cybersecurity news platform, delivering up-to-date coverage on breaches, emerging threats, malware, vulnerabilities, and global cyber incidents.

Company

Trending

Categories

Copyright @ 2016 - 2025 GBHackers On Security - All Rights Reserved