• About
  • Advertise
  • Careers
  • Contact
Wednesday, March 3, 2021
  • Login
WRITE FOR US
Economy.pk
  • World
    • Americas
    • Asia
    • Europe
    • Canada
    • Africa
    • Middle East
    • Oceania
  • Politics
    • International Politics
    • Pakistan Politics
  • Business
    • Economy
    • Finance
    • Entrepreneurship
    • Real Estate
  • Technology
    • Cyber Security
    • Mobiles
    • Social Media
  • Education
  • Health
    • Environment
    • Fitness
  • Life & Style
    • Personalities
    • Entertainment
    • Art
    • Fashion
    • History
    • Culture
    • Food
  • Opinions
  • World
    • Americas
    • Asia
    • Europe
    • Canada
    • Africa
    • Middle East
    • Oceania
  • Politics
    • International Politics
    • Pakistan Politics
  • Business
    • Economy
    • Finance
    • Entrepreneurship
    • Real Estate
  • Technology
    • Cyber Security
    • Mobiles
    • Social Media
  • Education
  • Health
    • Environment
    • Fitness
  • Life & Style
    • Personalities
    • Entertainment
    • Art
    • Fashion
    • History
    • Culture
    • Food
  • Opinions
Economy.pk

Google removes unnamed apps from Play Store after connection with fraudulent Ad Bot

bySyed Mahad
September 3, 2020
in Cyber Security, Technology
0
Google & Terracotta Botnet
116
SHARES
439
VIEWS
Share on FacebookShare on Twitter

A set of unnamed android applications were removed from the Google Play Store by Google in wake of the fraudulent botnet connection. The applications were reported as a part of the fraud botnet named as the TERRACOTTA. A team from Satori researchers of cybersecurity firm White Ops detected the bot. The specialized bot detection personnel of the White Ops team tracked the bot. The team is said to be tracking and looking over TERRACOTTA since late 2019. The time when the botnet was active said by the experts themselves.

Fraudulent Applications were uploaded on the Google Play Store by the TERRACOTTA operators. These applications offered free bonuses and free products in exchange to the installation of the programs on their device. The free bonus is said to include, concert tickets, free shoes, trainers, coupons, and expensive dental procedures. The victims were fond of the gifts and were prompted to install the applications. The user had to wait two weeks to receive their prize.

The Applications downloaded and secretly launched and operated a modified version of the WebView mini browser. This browser loaded fraudulent Ads, generating revenue for the attackers with the user’s impressions.

The APK commonly known as the main application code is written using a cross-platform development React Native. The app simply displays a form that the user fills to receive the supposedly free products from the application. However, no malicious function is found in the part of the application but contains malicious content in the .WAKE_LOCK and .FOREGROUND_SERVICE permissions.

From the botnet modules, a module handles the communication between the C&C servers. Such a connection is achieved through the messaging capability of Firebase. Firebase is a widely used mobile application platform, while, the advertisement fraud is activated by the push messages from Firebase. The victim is secretly giving impressions to the TERRACOTTA Fraudulent Advertisements without knowing.

As per the research of the professionals, the TERRACOTTA botnet in the month of June downloaded 2 Billion advertisements. Infection around 65000 smartphones. The researchers have found and presented their work to Google, which has taken the action against the malicious applications and removed the Applications from the Google Play Store.

Credits: SecurityLab

Tags: AndroidBotnetCybersecurityGoogleGoogle Play StoreTechnologyTERRACOTTAWhiteOps
Syed Mahad

Syed Mahad

Next Post
Jahangir Khan The Greatest Squash Player in the World

Jahangir Khan The Greatest Squash Player in the World

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

No Result
View All Result

Recommended

30 pc of Terf Invested in New Projects - Dr Reza Baqir

30 pc of Terf Invested in New Projects – Dr Reza Baqir

Exports falling to 4.5 percent

In February Exportation’s falling by 4.5 percent

Consumer items inflating to 8 percent

Inflation in February fringed to 8.7 percent

The Saindak Project, Balochistan

Royalty paid to the firms orchestrating the Saindak project

TRG Pakistan Limited, Royalty paid to the Saindak project firms

TRG Pakistan reported a 3.6 billion profit

Zaitoon New Lahore City is Offering a 100% cash Back Offer

Zaitoon New Lahore City is Offering a 100% cash Back Offer

Connect with us

Twitter

Economy.pk

Economy.pk touches diverse topics with a lighter note and is geared toward audiences with various interests and all ages. Come and explore Economy.pk. Ample details and analysis are provided in extraordinarily readable manner making them compelling and interesting at the same time.

Category

  • World
  • Politics
  • Business
  • Technology
  • Education
  • Health
  • Life & Style
  • Opinions

Social Media

  • Facebook
  • Twitter

Sitelinks

  • Sitemap

Download our APP

download on android app download on apple app
  • About
  • Advertise
  • Careers
  • Contact

© 2020 Economy.pk - Powered by Digital Otters.

  • Finance
  • Politics
  • Business
    • Technology
    • Real Estate
    • Entrepreneurship
  • Life & Style
    • Personalities
  • Sponsored

© 2020 Economy.pk - Powered by Digital Otters.

No Result
View All Result

Welcome Back!

Login to your account below

Forgotten Password?

Create New Account!

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In