Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps

Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps — Ravie LakshmananMay 19, 2026Malvertising / Mobile Security [https://blo

What’s new: A new Android ad fraud scheme named Trapdoor has been identified, impacting 455 malicious apps and generating 659 million daily bid requests. The operation utilizes a multi-stage fraud mechanism, where users unknowingly download apps that lead to further malicious activities, including hidden ad requests and automated touch fraud.

Who’s affected

Android device users who download affected apps, primarily utility-style applications, are at risk. The majority of the traffic associated with this scheme originates from the U.S., with over 24 million downloads of the malicious apps reported.

What to do

Review and remove any suspicious apps from Android devices, particularly those that mimic utility functions.
Monitor network traffic for unusual bid requests or ad activity.
Implement security measures to detect and block malvertising and ad fraud activities.
Stay informed about updates from Google regarding app removals and security patches.

Sources

The Hacker News

Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps

Who’s affected

What to do

Sources

Related Posts:

NSAuditor AI 0.7.1 Launches GCP IAM Auditor with Seven New Dimensions for Enhanced Cloud Security

“NSAuditor AI EE 0.7.0 Introduces GCP IAM Project-Level Auditor for Enhanced Cross-Cloud Security”

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

NSAuditor AI 0.7.1 Launches GCP IAM Auditor with Seven New Dimensions for Enhanced Cloud Security

“NSAuditor AI EE 0.7.0 Introduces GCP IAM Project-Level Auditor for Enhanced Cross-Cloud Security”

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Popular GitHub Action Tags Redirected to Imposter Commit to Steal CI/CD Credentials