At the end of April 2015, researchers from Distil Networks reported the discovery of a sophisticated ad fraud network, Vastflux, which had been around since at least January 2014. The network used sophisticated malware targeting both iOS and Android users and spanned over 1,700 apps.
Vastflux was an advanced mobile ad fraud that operated by spoofing spoofing popular apps, hijacking network traffic and inserting malicious ads. These ads would hijack users and serve them with targeted click fraud advertisements. Furthermore, the ad fraud network would monetise by collecting ad revenue from those ads.
The Disruptor approach used by Distil Networks allowed them to take effective steps to terminate the malicious advertising. They shut down the command and control servers and websites used to manage the network, making it difficult for the fraudsters to continue operating.
The campaign was a notable success as hundreds of apps were taken off the app stores and the routers responsible for the malicious advertising were terminated. Moreover, it exhibited a pattern of sophisticated techniques which are used in campaigns similar to Vastflux.
When it comes to identifying and preventing similar future fraud attacks here are 10 things you need to know:
1. Be aware of spoofed apps. It’s important to keep track of the legitimate apps being released and try to identify any imitations.
2. Monitor apps for malicious behaviour. The earliest signaries of an app being compromised could be an increase in network traffic, or a change in user behaviour patterns.
3. Keep an eye on third-party ads. Malicious advertisements often have different coding from legitimate advertisements and can be identified by their behaviour.
4. Increase vigilance on app stores. shady apps can hide in plain sight and updating check could help to catch malicious apps before they are unleashed on unsuspecting users.
5. Review app permissions. Many malicious apps get consent to access user information and can also gain access to other apps and data.
6. Add ad fraud detection and prevention tools. Security technologies exist to monitor and block malicious advertising.
7. Disable third-party app stores. Often users install third-party apps without realizing they represent an additional risk.
8. Raise user awareness. Familiarizing users with the signs of ad fraud and the preventive steps they need to take helps minimizes the risks.
9. Implement strict app vetting. Make sure all apps submitted to the app store pass a rigorous check process to guarantee the content’s safety.
10. Distribute updates regularly. This can provide new security patches for existing apps as well as new features, thus reducing the chances of exploitation.
These measures, combined with vigilance and constant monitoring, can help make sure apps are safe from fraudsters’ attempts to hijack your users with malicious advertising.
This Cyber News was published on www.securityweek.com. Publication date: Tue, 24 Jan 2023 03:31:02 +0000