BADBOX 2.0 Targets Consumer Devices with Multiple Fraud Schemes
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
HUMAN's Satori Threat Intelligence team uncovered and partially disrupted BADBOX 2.0, a complex fraud operation targeting low-cost consumer devices. This operation, an expansion of the 2023 BADBOX scheme, infected over 1 million Android Open Source Project devices worldwide with a backdoor called BB2DOOR. The infection enabled various fraud schemes, including residential proxy services, ad fraud, and click fraud. Four threat actor groups were identified: SalesTracker Group, MoYu Group, Lemon Group, and LongTV. The operation targeted devices in 222 countries, with Brazil being the most affected. HUMAN collaborated with Google and other partners to disrupt the infrastructure and protect customers from the threat.
OPENCTI LABELS :
backdoor,botnet,iot,ad fraud,badbox,vo1d,ctv,bb2door,residential proxy,click fraud,badbox 2.0
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
BADBOX 2.0 Targets Consumer Devices with Multiple Fraud Schemes