China TV network exposes 'shady' smartphone advertising

China TV network exposes 'shady' smartphone advertising

Summary: Mobile advertisers not only placed ads on pirated apps, plugins also were pushed with the apps to harvest user data for sale to advertising agencies.

SHARE:
TOPICS: Security, Mobility, China
3

An undercover investigation has found "shady" mobile advertisements practices in China, ranging from advertising on pirated copycat apps and mining user data to sell to advertising agencies.

According to Sina Tech on Wednesday, China state television network, CCTV, sent reporters posing as clients to mobile advertising agencies to enquire about products they offered. A representative of Wooboo mobile advertising agency told reporters they advertised mostly on pirated apps, but it was not a copyright problem since they did not develop the pirated apps, but just served ads. It then split the profits with those developers.

Another representative from Yinggao agency noted its advertising platform was equivalent to "having a tracking device installed on [users]". "Wherever you go, we'll know about it. As long as you're connected to the network we'll know," he said.

He added information is gathered through a plugin that runs unnoticed in the background and comes bundled with the software served by the advertising agency. They are able to share a user's location, phone number, address book, and other personal data with the advertising agency, he said.

Mobile advertising agency, Youmi, also told reporters it could mine personal data from smartphone users and the information is useful as it allows the company to cater other services such as pushmail and text messages. This provides extra avenues for revenue.

CCTV then cited industry statistics which stated 73 percent of malicious advertising would attempt to get user location information, while 47 percent of them would target users' phone number, pointing to higher security risks for users.

This echoes the view of Avi Rosen, director of online threats managed services group at RSA, who told ZDNet Asia previously that as mobility gains traction, cybercriminals will see mobile apps as a way to gain access to user devices. Users believe the software is safe as long as it is published on appstore, but there are many rogue apps today which masquerade as original apps but secretly steal information from consumers devices, he said.

Topics: Security, Mobility, China

Ellyne Phneah

About Ellyne Phneah

Elly grew up on the adrenaline of crime fiction and it spurred her interest in cybercrime, privacy and the terror on the dark side of IT. At ZDNet Asia, she has made it her mission to warn readers of upcoming security threats, while also covering other tech issues.

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Talkback

3 comments
Log in or register to join the discussion
  • Just like M$ and Apple malware

    only android and Linux protects you against this malware
    LlNUX Geek
  • malware

    I think you'll find that they're Android apps.
    Saxwulf
  • Correction on English names

    Two of the companies were not correctly identified by their English names. Wangbang is known as Wooboo and Yinggao is known as WinAds. The English name of Wooboo was clearly visibile in the CCTV video and both companies show these names on their websites rather than the ones reported.
    KikiD