fraudulent activities Archives

AppWizard

May 20, 2026

Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps

Cybersecurity researchers have identified an ad fraud and malvertising operation called Trapdoor, targeting Android users with 455 malicious applications and 183 command-and-control domains. Users often download these disguised apps, which initiate malvertising campaigns and lead to further downloads of malicious applications. At its peak, Trapdoor generated 659 million bid requests daily, with over 24 million downloads of the associated apps, primarily from the United States. The operation exploits install attribution tools to activate malicious activities only for users acquired through fraudulent ad campaigns, while suppressing such behavior for organic downloads. Trapdoor employs advanced evasion techniques, including obfuscation and impersonation of legitimate software, to avoid detection. Google has removed the identified malicious apps from the Play Store in response to the threat.

AppWizard

May 5, 2026

FEMITBOT Network Abuses Telegram Mini Apps for Crypto Scams and Android Malware

A fraud network called FEMITBOT has emerged, using Telegram's Mini App feature to conduct investment scams and distribute malware. Identified by the research firm CTM360, the network operates through API responses and presents itself as organized. The scams involve Telegram Mini Apps that display phishing pages, fake dashboards showing fictitious earnings, and urgency tactics to pressure users into making quick decisions. FEMITBOT mimics well-known brands like Apple and Coca-Cola to enhance credibility and disseminates Android malware disguised as legitimate applications. The operation is highly organized, utilizing marketing tools to optimize their scams. Users are warned to be cautious of bots requesting deposits before granting access to funds.

AppWizard

April 16, 2026

Google Play is changing how Android apps access your contacts and location

Google has updated its Google Play policies to enhance user privacy and protect businesses from fraud. Starting in October, developers will have access to Play policy insights in Android Studio to help comply with new features. On October 27, the Play Console will implement pre-review checks for contact and location permissions. The Android Contact Picker will be the standard for accessing contacts, requiring apps to use it or privacy-focused alternatives. Developers must update their apps to use the picker and submit a Play Developer Declaration for ongoing contact access. A new location button will be introduced for precise location requests, and apps must use it for one-time access. Developers should review their location data requests and include the onlyForLocationButton flag if targeting Android 17 and above. The Play Console will also introduce an official account transfer feature for ownership changes, effective May 27, with a mandatory 7-day security cool-down period for transfers. Unofficial transfers are prohibited.

AppWizard

March 12, 2026

Meta rolls out new scam detection tools across Facebook, WhatsApp, and Messenger

Meta is introducing new scam-detection features across Facebook, WhatsApp, and Messenger to enhance user safety. Facebook will implement a warning system for suspicious friend requests, alerting users to accounts with few mutual friends or unusual locations. WhatsApp will provide alerts for suspicious device-linking attempts, informing users of the request's origin. Messenger will expand its scam detection system to more countries, analyzing conversations for scam patterns and providing warnings. Over the past year, Meta has removed over 159 million scam-related ads and deactivated millions of scam-related accounts.

AppWizard

March 12, 2026

Meta Rolls Out Scam Warnings on Facebook, Messenger, and WhatsApp

Meta is implementing measures to combat scams on its platforms, including Facebook, Messenger, and WhatsApp, by using artificial intelligence and forming enforcement partnerships. Users will receive real-time alerts on Facebook for suspicious friend requests, and Messenger will enhance scam detection by analyzing conversation patterns. WhatsApp will notify users of unusual device-linking attempts to secure accounts. Meta has removed over 159 million scam ads and disabled 10.9 million fraudulent accounts, collaborating with law enforcement to disable more than 150,000 accounts and effect 21 arrests. The company plans to mandate advertiser verification for high-risk categories to reduce fraudulent ads and aims for verified advertisers to account for 90% of ad revenue. The success of these initiatives will be measured by reductions in reported losses and chargebacks.

AppWizard

March 11, 2026

Meta Adds Scam Detection to Facebook, WhatsApp, and Messenger

Meta is introducing new scam detection tools for its platforms—Facebook, WhatsApp, and Messenger—to enhance security. Facebook users will receive alerts for suspicious friend requests, while WhatsApp will issue device-linking warnings to prevent unauthorized access. Advanced algorithms will analyze conversation patterns for signs of fraud, prompting users to report suspicious messages for AI analysis. Users can choose to block or report accounts based on these alerts, ensuring privacy through opt-in sharing of messages. The initiative responds to rising fraud statistics, with the FTC noting significant consumer losses and increased phishing attempts. Key metrics for success will include the interception of suspicious interactions and user engagement with reporting features. Users are advised to maintain skepticism toward unsolicited communications and enable two-step verification for added security.

AppWizard

March 2, 2026

Meta makes changes following a Solon man’s $1 million loss in scheme police say started on Facebook Messenger

A 63-year-old resident in Solon, Ohio, lost over a million dollars to a scammer posing as a cryptocurrency investment guru. The scam began with a friendly outreach on Facebook, which transitioned to WhatsApp for private conversations. Over several months, the victim was convinced to invest in what he thought was a legitimate opportunity. This incident reflects a broader trend, as the FBI reported that Ohioans aged 60 and older lost over a million to fraud in 2024. Meta Platforms is enhancing tools to detect and disrupt fraudulent activities on its platforms, including new warnings for screen sharing requests on WhatsApp. In the first half of 2025, Meta removed eight million accounts suspected of scams and shut down 21,000 pages impersonating legitimate businesses. Warning signs in the Solon case included initial contact from a stranger, a quick shift to cryptocurrency discussions, and unusually high promised returns.

AppWizard

February 19, 2026

Android security gets aggressive as Google bans thousands of developers and millions of sketchy apps

Google has reported significant improvements in app security for Android in 2025, preventing over 1.75 million policy-violating apps from entering the Play Store and removing more than 80,000 developer accounts attempting to distribute malware. The integration of AI models into the app review process has enhanced the speed and accuracy of identifying malicious patterns. Additionally, Google blocked over 255,000 apps from requesting unnecessary sensitive data and eliminated 160 million spam ratings and reviews. Google Play Protect now evaluates over 350 billion apps daily, identifying 27 million new malicious apps outside the Play Store and blocking 266 million risky installation attempts across 185 markets. A new measure has been implemented to prevent users from disabling Play Protect during phone calls to combat social engineering tactics. Future plans include democratizing developer verification and simplifying protection against "tapjacking" attacks in Android 16.

AppWizard

February 11, 2026

Roskomnadzor Tightens Restrictions on Telegram as Users Report Disruptions

Russian state media regulator Roskomnadzor is imposing restrictions on the messaging app Telegram due to its inability to combat fraud and protect user data. Users in Russia have reported performance issues, particularly slow download speeds, since January. Complaints have increased recently, leading Roskomnadzor to accuse Telegram of insufficient measures against fraudulent activities and concerns over personal data protection. Pavel Durov, Telegram's founder, claimed the authorities aim to push users towards the government-endorsed app Max, which has been criticized for potential surveillance and censorship. Users have experienced disruptions primarily affecting media content on the mobile app, while text messaging remains largely unaffected. Roskomnadzor had previously restricted voice and video calls on WhatsApp and Telegram as part of an anti-fraud initiative. The competition between Telegram and Max is intensifying, with Max reaching 70 million monthly users, while Telegram had 94.5 million and WhatsApp 93.6 million users at that time.

AppWizard

January 30, 2026

DoubleVerify warns of ‘zombie’ Android app fraud surge

DoubleVerify has raised concerns about a mobile scam involving the hijacking of dormant Android developer accounts, referred to as "zombie" accounts, which are exploited to publish fraudulent gaming applications on Google Play. This new tactic allows fraudsters to bypass automated checks due to the accounts' history of legitimate activity. The fraudulent apps generate invalid traffic, drain advertiser budgets, and excessively consume device battery power. DoubleVerify has identified unusual traffic patterns, such as surges at early morning hours, which do not align with typical gaming behavior, indicating the presence of bot clusters generating ad requests. Specific examples include dormant accounts that suddenly shifted to publishing gaming apps after years of inactivity. The reliance on developer history as a trust signal poses risks for advertisers, as it can lead to distorted campaign measurements and brand risks. DoubleVerify advocates for real-time behavioral analysis to enhance detection and protection against these threats.