177/68 Friday, May 16, 2025
Researchers have uncovered a new ad fraud network named Kaleidoscope, targeting Android users with unskippable ads that cause significant disruption and frustration. Traditionally, ad fraud mainly affects advertisers, who pay for impressions or clicks that are not genuine—often generated by bots or deceptive tricks. These malicious activities typically run in the background, leaving users unaware. However, Kaleidoscope is different: users are directly affected by persistent, intrusive ads that interrupt device usage.
The Kaleidoscope network spreads through apps that appear legitimate on Google Play Store, as well as lookalike apps distributed via third-party app stores. Critically, both the real and fake versions of these apps share the same App ID, misleading advertisers into thinking their ads are appearing in legitimate apps. Meanwhile, users who download the apps from third-party stores are bombarded with full-screen ads—both images and videos—even when they are not actively using the apps.
Researchers discovered over 130 apps associated with the Kaleidoscope network, with an estimated 2.5 million fraudulent installs per month. The operation appears to be a successor or evolution of the CaramelAds ad fraud network, sharing similarities in code structure and infrastructure.
Fortunately, Google Play Protect automatically protects users from such harmful apps, and no malicious versions of Kaleidoscope apps were found on the Google Play Store. However, to defend against ad malware, security experts recommend the following:
- Download apps only from the Google Play Store
- Be cautious when granting app permissions—especially “Display over other apps”
- Avoid allowing push notifications from untrusted ad websites
- Install and regularly update reputable mobile security software
By taking these precautions, Android users can significantly reduce their risk of exposure to intrusive ad malware like Kaleidoscope.
Source https://www.malwarebytes.com/blog/news/2025/05/android-users-bombarded-with-unskippable-ads
