Never heard of the term “Ad Fraud“? Let me enlighten you a bit on Ad Fraud before I introduce you to the 8 popular Android apps that have been found guilty in recent times. Ad fraud (also referred to as Invalid Traffic) is concerned with the theory and practice of fraudulently representing online advertisement impressions, clicks, conversion or data events in order to generate revenue.
In 2004 Google’s CFO George Reyes said that fraud is the biggest threat to the internet economy with the first research paper covering the topic in 1999 or earlier and in 2016, World Federation of Advertisers published its first guidance on Ad fraud to advise its members on how to counter the problem allegedly eating close to US$20 billion of its members ad budgets in 201
Fast forward to 2018, eight popular Android apps with a total of more than 2 billion downloads in the Google Play store have been found of exploiting user permissions as part of an ad fraud scheme that could have stolen millions of dollars, according to research from Kochava, an app analytics and attribution company that detected the scheme.
Interestingly, seven of those apps Kochava found engaging in this behavior are owned by Cheetah Mobile, a Chinese company which was last year listed on the New York Stock Exchange and accused of fraudulent business practices by a short-seller investment firm — a charge that Cheetah denied.
The other app is owned by Kika Tech, another Chinese company that received a huge investment from Cheetah in 2016. The practice being executed by Cheetah and Kika is commonly referred to as click flooding and click injection which usually ensures these companies are rewarded an app-install bounty even when they played no role in an app’s installation.
As per app analytics firm Kochava, which shared its report with Buzzfeed News, the two firms have been misusing app permissions in order to monitor new downloads and then used the data to claim credit for having caused the download. The report explains that the ad fraud scheme exploits the fact that several app developers pay a bounty ranging from 50 cents (roughly Rs. 35) to $3 (roughly Rs. 200) to partners that help them get more installations of their apps. Cheetah and Kika have essentially been using click flooding and click injection techniques to get app-install bounties even without playing any role in app installations.
According to Kochava, this particular scheme exploits the fact that many app developers pay a fee to partners that help drive new installations of their apps and after Kochava’s latest analysis, Cheetah and Kika apps tracked when users downloaded new apps and used this data to inappropriately claim credit for having caused the download.