• Home
  • Latest
  • Fortune 500
  • Finance
  • Tech
  • Leadership
  • Lifestyle
  • Rankings
  • Multimedia

Trendingnow

1

MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year

2

Philanthropy leader at Warren Buffett and Bill Gates’ Giving Pledge says children of billionaires are pushing them to give their wealth away faster

3

Elon Musk on MacKenzie Scott giving away $26 billion of her fortune: 'Sadly,' it makes the world a worse place

1

MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year

2

Philanthropy leader at Warren Buffett and Bill Gates’ Giving Pledge says children of billionaires are pushing them to give their wealth away faster

3

Elon Musk on MacKenzie Scott giving away $26 billion of her fortune: 'Sadly,' it makes the world a worse place
TechThe Mobile Executive

Google Android Fraudsters Breach More Than 1 Million Accounts

Robert Hackett
By
Robert Hackett
Robert Hackett
Down Arrow Button Icon
Robert Hackett
By
Robert Hackett
Robert Hackett
Down Arrow Button Icon
November 30, 2016, 1:13 PM ET
Add Fortune on Google for similar content.

Hackers have in a matter of months compromised more than 1 million Google accounts as part of a lucrative fraudulent advertising scheme involving malicious app downloads, according to a new report by Check Point Software Technologies (CHKP), an Israeli cybersecurity firm.

People’s devices became infected after they installed innocent-looking, albeit booby-trapped software from app stores outside Google’s (GOOG) authorized Play store. The malware took complete control of their devices at the root, or deepest level, stealing tokens that Google cloud services—such as Gmail, Google Photos, and Google Docs—use to authenticate users.

Since August, the fraudsters made off with 1.3 million tokens with an average of 13,000 new phone infections per day, Check Point researchers found. The attackers reportedly used their foothold in the devices to install additional apps and ad software as well as to post fake reviews and ratings—all to generate hundreds of thousands of dollars in bogus ad revenue per month.

Get Data Sheet, Fortune’s technology newsletter.

“They were able to get to the lowest level of the Android operating system where there are no limitations on what the malware can do, and then they went after these account files,” said Michael Shaulov, head of mobile products at Check Point, referencing the million-plus stolen Google account credentials. “It’s probably the biggest ever security breach of Google accounts.”

Shaulov’s team discovered the extent of the security breach after a strange piece of malware tripped an alert in Check Point’s mobile security product a month ago, he said. The team then began working working with Google to investigate the incident.

Despite having pilfered a vast cache of Google account credentials, the hackers did not appear to access data on Google services other than the Play store, Google said.

Read more: “Millions of Android Devices Were Infected by a Chinese Advertising Firm”

“We used automated tools to look for signs of other fraudulent activity within the affected Google accounts,” wrote Adrian Ludwig, director of Android security at Google, in a Google Plus blog post addressing the compromise. “None were found.”

The attackers, in other words, could have used the credentials to pore over people’s email messages, or to hold people’s photo libraries for ransom. Instead, they appear to have stuck to ad fraud.

For more on advertising, watch:

The malicious software, dubbed “Gooligan,” belongs to a family of malware called “Ghost Push,” which Google has been tracking for two years, Ludwig said. Google discovered more than 40,000 apps related to the scam last year, the company noted in a recent security report.

Check Point researchers have found 86 apps infected with the malware bearing innocuous names like “Wifi Master,” “Light Browser,” and “Flashlight Free.” About three-quarters of all Android devices on the market today are vulnerable, specifically those running operating system versions 4 through 5, dubbed Jelly Bean (4.1 to 4.3.1), KitKat (4.4 to 4.4.4), Lollipop (5.0 to 5.1.1), Check Point said.

Check Point recommended in a blog post that people who suspect their devices may have been compromised (seen unusual pop-up ads on your phone lately?) should check to see whether their account has been breached by entering their email addresses at the following website: https://gooligan.checkpoint.com/.

Check Point further recommended that victims reinstall the operating system on their phones, hiring a technician to “flash” the device’s memory, since a standard factory reboot is not enough to remediate the issue. Immediately following that, customers should change their Google passwords, the company said.

Google, for its part, recommended that customers download the latest Android software updates and stay away from unauthorized app stores to prevent future compromises. The company said it is working to take down the attackers’ infrastructure, to eliminate malicious apps from its stores, and to resecure customers’ compromised accounts.

Asked who was behind the campaign, Check Point’s Shaulov said he hoped to be able to share an attribution in a week’s time. “Right now we understand who we believe is involved, but we want to nail down who exactly is behind this,” he said.

About the Author
Robert Hackett
By Robert Hackett
Instagram iconLinkedIn iconTwitter icon
See full bioRight Arrow Button Icon
Add Fortune on Google for similar content.

Latest in Tech

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025

Most Popular

Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Finance
Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam
By Fortune Editors
October 20, 2025
Fortune Secondary Logo
Rankings
  • 100 Best Companies
  • Fortune 500
  • Global 500
  • Fortune 500 Europe
  • Most Powerful Women
  • World's Most Admired Companies
  • See All Rankings
  • Lists Calendar
Sections
  • Finance
  • Fortune Crypto
  • Features
  • Leadership
  • Health
  • Commentary
  • Success
  • Retail
  • Mpw
  • Tech
  • Lifestyle
  • CEO Initiative
  • Asia
  • Politics
  • Conferences
  • Europe
  • Newsletters
  • Personal Finance
  • Environment
  • Magazine
  • Education
Customer Support
  • Frequently Asked Questions
  • Customer Service Portal
  • Privacy Policy
  • Terms Of Use
  • Single Issues For Purchase
  • International Print
Commercial Services
  • Advertising
  • Fortune Brand Studio
  • Fortune Analytics
  • Fortune Conferences
  • Business Development
  • Group Subscriptions
About Us
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • About Us
  • Press Center
  • Work At Fortune
  • Terms And Conditions
  • Site Map
  • Facebook icon
  • Twitter icon
  • LinkedIn icon
  • Instagram icon
  • Pinterest icon

Latest in Tech

Microsoft CEO Satya Nadella on April 23, 2026 in Sydney, Australia. (Photo: George Chan/Getty Images)
NewslettersFortune Tech
Microsoft may cut thousands more jobs in a bid to control costs
By Andrew NuscaJuly 1, 2026
28 minutes ago
As Big Tech showers employees with perks to win the talent war, Nvidia built a nearly $5 trillion company by making people pay for their own lunch
Big TechNvidia
As Big Tech showers employees with perks to win the talent war, Nvidia built a nearly $5 trillion company by making people pay for their own lunch
By Marco Quiroz-GutierrezJuly 1, 2026
2 hours ago
Dell’s AI boom is real, but so is the profit margin hit nobody is pricing in
AIDell Technologies
Dell’s AI boom is real, but so is the profit margin hit nobody is pricing in
By Mia OsmonbekovJune 30, 2026
14 hours ago
Image of colored bar charts with one being pushed up.
NewslettersEye on AI
AI is minting billion-dollar companies faster than before
By Beatrice NolanJune 30, 2026
16 hours ago
Anthropic CEO Dario Amodei pointing to his head.
AIAnthropic
At the heart of Anthropic’s clashes with the U.S. government, a decision not to play by the new rules of Trump’s Washington
By Jeremy KahnJune 30, 2026
20 hours ago
wb
CommentaryLeadership
I grew BDO from $600 million to $3.4 billion. Here’s the 3-part formula that made it possible
By Wayne BersonJune 30, 2026
21 hours ago

Most Popular

MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year
Success
MacKenzie Scott alone accounted for one-third of America's $19.2 billion in megagifts last year
By Sydney LakeJune 25, 2026
6 days ago
Philanthropy leader at Warren Buffett and Bill Gates’ Giving Pledge says children of billionaires are pushing them to give their wealth away faster
Success
Philanthropy leader at Warren Buffett and Bill Gates’ Giving Pledge says children of billionaires are pushing them to give their wealth away faster
By Preston ForeJune 27, 2026
4 days ago
Elon Musk on MacKenzie Scott giving away $26 billion of her fortune: 'Sadly,' it makes the world a worse place
Success
Elon Musk on MacKenzie Scott giving away $26 billion of her fortune: 'Sadly,' it makes the world a worse place
By Sydney LakeJune 29, 2026
2 days ago
'Humanity has chosen to become idiots': This Brown professor switched to take-home exams after a mass shooting and discovered mass cheating
AI
'Humanity has chosen to become idiots': This Brown professor switched to take-home exams after a mass shooting and discovered mass cheating
By Catherina GioinoJune 29, 2026
1 day ago
The U.S. Army is opening military bases to private billions — here's why that changes everything for the next 250 years
Commentary
The U.S. Army is opening military bases to private billions — here's why that changes everything for the next 250 years
By Marc AndersenJune 30, 2026
22 hours ago
The retired college professor fighting a $313 trespassing ticket in Wisconsin thinks he's part of a national struggle
Environment
The retired college professor fighting a $313 trespassing ticket in Wisconsin thinks he's part of a national struggle
By Catherina GioinoJune 28, 2026
3 days ago

© 2026 Fortune Media IP Limited. All Rights Reserved. Use of this site constitutes acceptance of our Terms of Use and Privacy Policy | CA Notice at Collection and Privacy Notice | Do Not Sell/Share My Personal Information
FORTUNE is a trademark of Fortune Media IP Limited, registered in the U.S. and other countries. FORTUNE may receive compensation for some links to products and services on this website. Offers may be subject to change without notice.