This was done through App and bundle ID spoofing. The Scylla apps contain code that lets advertisers and ad tech companies believe these are popular apps. This tricks companies into placing ads and, even worse, spending money to place ads in the app — especially if it’s a gaming app or streaming service. The malicious apps also use adware tactics by using hidden ads the user can’t see and having ads pop up even when the app isn’t open. By having these ads pop up and users accidentally click on them, the threat actors make a profit. The Scylla apps also used code to garner fake clicks on ads so advertising companies think they are being clicked on. Clicks are better than views, meaning the fraudsters were gaining extra money from ads that weren’t being clicked on. Scylla stems from a family of ad fraud methods, with the first set of malicious apps being discovered in 2019 by the Satori team. Known as “Poseidon”, the scheme saw 40 Andoird apps commit ad fraud, which also used out-of-context and hidden ads. In late 2020 and early 2021, Satori found the second wave of the scheme, which is labeled “Charybdis.” As the report points out, Scylla stands out by targetting advertising SDKs not just for Android apps but also for iOS apps. Apple’s App Store is known to have a secure line of defense to avoid malicious apps on its store, but Scylla slipped through with 10 iOS apps.
Delete these iOS apps
While the Satori team confirms that apps have been taken down on both the App Store and Google Play Store, it’s a good idea to see if these apps are still installed on your iPhone. These apps are run-of-the-mill games that you’d typically find on iOS. Here are nine of the known apps:
Loot the CastleRun BridgeShinning GunRacing Legend 3DRope RunnerWood SculptorFire-WallNinja Critical HitTony Runs
For a full list of apps both on iOS and Android, check out the full report on HUMAN Security. More apps using the Scylla attack method could pop up, so be sure to keep an eye out for suspicious-looking apps. Recently, we’ve seen a new malware that stealing credit card and personal data, along with malware stealing passwords and credit card info. To keep yourself secure, check out the best antivirus apps around, and learn what you need to know about adware, ransomware, and spyware.