As many as 75 apps on Google Play and 10 on Apple App Store have been discovered engaging in ad fraud as part of an ongoing campaign that commenced in 2019.
The latest iteration, dubbed Scylla by Online fraud-prevention firm HUMAN Security, follows similar attack waves in August 2019 and late 2020 that go by the codename Poseidon and Charybdis, respectively.
Prior to their removal from the app storefronts, the apps had been collectively installed more than 13 million times.
The original Poseidon operation comprised over 40 Android apps that were designed to display ads out of context or hidden from the view of the device user.
Charybdis, on the other hand, was an improvement over the former by making use of code obfuscation tactics to target advertising platforms.
images from Hacker News