Google has just carried out a major “purge” on Google Play, removing 224 malicious apps that were discovered in a large-scale advertising fraud campaign, dubbed SlopAds. These apps had been installed a total of more than 38 million times globally, while their attack techniques were so sophisticated that they could fool Android’s default protection system.
How does SlopAds campaign work?
The apps in this campaign look like normal apps — they don't cause any problems if downloaded directly from the Play Store and users search for and install them themselves.
But if users reach them via a malicious ad link, the app will activate its malicious functionality after installation by downloading an encrypted configuration file that contains links to a malicious adware module, a “cashout” server, and JavaScript code that executes fraudulent actions.
The app also uses sophisticated techniques to avoid detection during the review phase, such as not behaving differently until testing the device to avoid being mistaken for a fake or test software.
One trick is to use a “harmless” PNG image containing encrypted data (steganography), then decode and reassemble it to create an APK containing dangerous adware.
The campaign covered a total of 228 countries, with the largest number of illegal ad impressions in the US (around 30%), followed by India and Brazil.
Harmful effects of installing SlopAds application
The app can run hidden ads, download fake content, or manipulate the user's device to display shady websites.
They can drain network data, battery, cause slow boot or overheating of the device, affecting overall performance.
Although it is not the most serious personal information stealing software like banking trojans, SlopAds is still a form of advertising/adware that causes great inconvenience and indirect risks to users.
Steps Google has taken to protect users
Google has removed all 224 apps involved in the SlopAds campaign from the Play Store.
Updated Google Play Protect — Android's built-in defense system — to warn users if these malicious apps are installed on their devices.
How do you protect yourself?
To avoid getting into a situation where you get infected with a malicious app, here are some steps you can take:
Only download apps from trusted sources, prioritize searching in Google Play instead of installing from strange advertising links.
Check the app's reviews and comments — if many people report it containing unusual ads or running in the background, avoid it.
Use Google Play Protect or trusted Android security software to periodically scan your device.
Look at the permissions the app requests — if a simple app (e.g., a photo viewer, a small widget) asks for network access, permission to write to external storage, or permission to read device information, be careful.
Update your Android operating system and security apps — new versions often fix bugs and add defenses against new threats.
Conclude
The SlopAds campaign is a reminder that “innocent” apps can pose a big risk if not properly vetted. Taking precautions by choosing your app download sources carefully, using security tools, and updating regularly are the best ways to keep your Android phone safe.
According to Toms Guide
Source: https://baovanhoa.vn/nhip-song-so/224-ung-dung-nguy-hiem-tren-play-store-ban-co-vo-tinh-tai-ve-168944.html
![[Photo] Prime Minister Pham Minh Chinh chairs the first meeting of the Central Steering Committee on housing policy and real estate market](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/22/c0f42b88c6284975b4bcfcf5b17656e7)
![[Photo] General Secretary To Lam presents the First Class Labor Medal to the Vietnam National Energy and Industry Group](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/21/0ad2d50e1c274a55a3736500c5f262e5)
Comment (0)