Vastflux is a scam on a huge scale, millions of phones impacted through thousands of compromised apps. These apps are adware, the ones who are feeding you adverts as their revenue stream – don’t buy the app, we will send you unobtrusive adverts inside. Many of these adware apps make so much money from the adverts that they do not offer ad-free versions as it would impact their revenue!
So if a threat actor could get inside the system supplying these adverts to the various apps, they could reach a huge number of devices with their advert multiplying scam… and they did:
A Sneaky Ad Scam Tore Through 11 Million Phones | WIRED UK
This scam hit both Apple and Android devices.
The figures in this report are huge – a widespread attack on the online adverting ecosystem.