BADBOX 2.0 Botnet Infects 1 Million Android Devices for Ad Fraud and Proxy Abuse
https://thehackernews.com/2025/03/badbox-20-botnet-infects-1-million.html
At least four different threat actors have been identified as involved in an updated version of a massive ad fraud and residential proxy scheme called BADBOX, painting a picture of an interconnected cybercrime ecosystem.
This includes SalesTracker Group, MoYu Group, Lemon Group, and LongTV, according to new findings from the HUMAN Satori Threat Intelligence and Research team, published in collaboration with Google, Trend Micro, Shadowserver, and other partners.
originally posted at https://stacker.news/items/916559
ch0k1
npub1k3…q9t9m
2025-03-18 13:12:46
Author Public Key
npub1k3qrkfq45qsvyp53hvvv2xk6tt9kfdca9asfvm9nc796dq65948q9q9t9mPublished at
2025-03-18 13:12:46Event JSON
{
"id": "4771a967abe28fd468003b022656db0a306c5fc972daea623a0550f1317645fd",
"pubkey": "b4403b2415a020c20691bb18c51ada5acb64b71d2f60966cb3c78ba683542d4e",
"created_at": 1742303566,
"kind": 1,
"tags": [],
"content": "BADBOX 2.0 Botnet Infects 1 Million Android Devices for Ad Fraud and Proxy Abuse\nhttps://thehackernews.com/2025/03/badbox-20-botnet-infects-1-million.html\n\nAt least four different threat actors have been identified as involved in an updated version of a massive ad fraud and residential proxy scheme called BADBOX, painting a picture of an interconnected cybercrime ecosystem.\n\nThis includes SalesTracker Group, MoYu Group, Lemon Group, and LongTV, according to new findings from the HUMAN Satori Threat Intelligence and Research team, published in collaboration with Google, Trend Micro, Shadowserver, and other partners.\n\noriginally posted at https://stacker.news/items/916559",
"sig": "714d5108f5e474732675fab5e3f5cc6317074d4bd59b442d8d4786197e3391f2ae9bd4d7dd000333f5277081383f66a4ebd4e549682b70047d37cedfa070485c"
}