Accordingly, the Satori research team from Human Security discovered IconAds malware, this malicious Android application that generates about a billion fake ad requests per day.
Although the apps have been deleted from the Play Store, if Android users have installed them before they are removed, these apps still exist on the device and will not be automatically removed, so users need to remove them manually.
It is known that this malware uses simple but effective tactics, including repackaging the application, using misleading names and symbols identical to legal tools. These applications often run silently, making it difficult for users to recognize them. Satori researchers say the ultimate goal of these apps is to create fake views, run hidden ads, and create invoices for advertisers.
Android users should check their application list to find any strange or unused apps. If you discover an application without an icon or name or a link to an unwanted website, please delete it immediately. At the same time, update the software and make sure that the Play Protect feature is enabled. Avoid installing applications with vague names, few downloads or no listed developers.
Although Google has taken quick action to remove phishing apps, the same problem has been discovered many times under the names HiddenAds, BADBOX and now IconAds. These applications do not steal data or encrypt the phone, but will exploit the advertising ecosystem that affects performance and violates user trust.
