Start free trial

Ad Fraud Cases in Recent Years (2022–2025)

  • Blog

Ad Fraud Cases in Recent Years (2022–2025)

Headshot of Oliver Kampmeier

Oliver Kampmeier

Cybersecurity Content Specialist

Simple horizontal timeline graphic labeled with the years 2022, 2023, 2024, and 2025, representing events or cases across recent years.

Ad fraud isn’t slowing down, it’s evolving. Between 2022 and 2024, investigations uncovered schemes ranging from deepfakes to MFA networks, costing advertisers billions.

What you’ll find here is just the visible tip of the iceberg. For every exposed case, many more remain hidden in the shadows.

Year:

2025
2024
2023
2022

2025

Vo1d Malware Botnet Expansion

By early 2025, the Vo1d malware botnet had expanded to infect approximately 1.6 million Android TV devices across 226 countries. These compromised devices were integrated into a botnet used for ad fraud and as anonymous proxy servers, underscoring the global scale and adaptability of such fraudulent operations.

Type of fraud:
Malware infection leading to the creation of a botnet for ad fraud and proxy services
Affected devices:
Android TV devices, including smart TVs and set-top boxes, across 226 countries
1.6 million
devices infected
Source

2024

Forbes' 'www3' Subdomain Controversy

In 2024, an investigation by The Wall Street Journal uncovered that Forbes had been operating a subdomain, www3.forbes.com, since at least 2017. This subdomain functioned as a “Made for Advertising” (MFA) site, designed primarily to maximize ad impressions rather than provide substantive content to users.

Type of fraud:
Operating an MFA subdomain to inflate ad impressions
Affected parties:
Major brands, including JPMorgan Chase, Disney, Johnson & Johnson, and Ford
Source
7+ years
running

Deepfake Celebrity Endorsement Scams

In 2024, a criminal network based in Georgia exploited deepfake technology to create fraudulent advertisements featuring fabricated endorsements from celebrities such as Martin Lewis, Zoe Ball, and Ben Fogle. These deceptive ads promoted fake cryptocurrency and investment schemes, deceiving over 6,000 victims across the UK, Europe, and Canada, resulting in losses totaling $35 million.

Type of fraud:
Deepfake celebrity endorsements promoting fraudulent investments
Affected parties:
Over 6,000 individuals across the UK, Europe, and Canada
Damage:
Collective financial losses amounting to $35 million among the victims
Source
$35 million
financial losses

ERIAKOS Scam Campaign

In April 2024, a sophisticated fraud campaign named “ERIAKOS” was uncovered, involving a network of 608 fraudulent e-commerce websites targeting Facebook users. These fake web shops impersonated popular brands to deceive visitors into providing personal and financial information.

Type of fraud:
Brand impersonation and malvertising through fake e-commerce websites
Affected parties:
Facebook users who accessed these fraudulent sites via mobile devices
Source
600+
fake sites & shops

SubdoMailing Ad Fraud Campaign

A massive ad fraud campaign known as “SubdoMailing” was uncovered, exploiting over 8,000 legitimate domains and 13,000 subdomains to distribute up to five million scam emails per day. The fraudsters hijacked abandoned subdomains of well-known companies to send their malicious emails, allowing them to bypass spam filters and exploit existing email authentication protocols like SPF and DKIM.

Type of fraud:
Hijacked subdomains used for large-scale email scams and malvertising
Affected parties:
Major brands like MSN, eBay, and The Economist
Source
21,000+
domains

2023

Malicious Google Play Apps Displaying Ads with Screen Off

In 2023, security researchers uncovered 43 Android applications on the Google Play Store, collectively downloaded over 2.5 million times, that secretly displayed advertisements even when users’ device screens were turned off.

Type of fraud:
Adware applications displaying unauthorized ads during device idle periods
Affected devices:
Android smartphones with the malicious applications installed
Damage:
Battery drain, excess data use, and lost ad revenue
Source
2.5 million
downloads

Former Executives of Outcome Health Convicted in $1 Billion Corporate Fraud Scheme

Outcome Health was a Chicago-based health technology company that installed television screens and tablets in doctors’ offices across the United States, selling advertising space on those devices primarily to pharmaceutical companies. In April 2023, three former executives were convicted for engaging in a massive corporate fraud scheme that misled clients, lenders, and investors, resulting in approximately $1 billion in fraudulently obtained funds.

Type of fraud:
Falsifying company performance metrics to secure substantial investments and loans
Affected parties:
Clients, lenders, and investors of Outcome Health
Damage:
Approximately $1 billion in fraudulently obtained funds
Source
$1 billion
damage

Allegations of Google's Misreporting on Video Ad Viewership

In 2023, a report by advertising research organization Adalytics alleged that Google misled numerous business and government advertisers regarding the viewership of its TrueView video ads on third-party websites and apps. The report claimed that many ads did not meet Google’s own guidelines, including instances where ads were run in small video players in the corner or at the side of the screen, were fully muted, had no actual video content between ads, or ran with little interaction or activation from the user.

Type of fraud:
Inflated video ad placements and metrics
Affected parties:
Government and corporate advertisers on TrueView
Source
3+ years
under investigation

Badbox 2.0 Malware Campaign

Badbox 2.0 was a large-scale malware campaign that infected over 1 million off brand Android devices worldwide, including low-cost tablets, connected TV (CTV) boxes, digital projectors, and more.

Type of fraud:
Fake ad impressions and residential proxy abuse via compromised devices
Affected devices:
Android-based devices, particularly low-cost or uncertified tablets, CTV boxes, and digital projectors
Damage:
Over 1 million devices compromised
Source
1+ million
devices infected

2022

Google Ad Fraud Campaign Leveraging Adult Content

In 2022, a significant advertising fraud campaign was uncovered, exploiting Google Ads and ‘popunder’ advertisements on adult websites to generate substantial illicit revenue.

Type of fraud:
Utilization of 'popunder' ads on adult sites to generate fraudulent ad impressions
Affected parties:
Advertisers with misallocated spend and brand risks
Damage:
Roughly $275K monthly, $3.3M yearly
Source
$3.3 million
yearly damage

Vastflux Ad Fraud Operation

Vastflux was a sophisticated ad fraud scheme that exploited vulnerabilities in the digital advertising ecosystem. First uncovered in 2022, the operation injected malicious code into legitimate ads, allowing fraudsters to stack multiple invisible video ads within a single ad slot. As a result, Vastflux generated up to 12 billion ad requests per day, causing massive financial losses for advertisers.

Type of fraud:
Fake ad impressions via hidden video ad stacking
Affected devices:
Mobile apps and websites
Damage:
Estimated losses of over $13 million per month for advertisers
Source
$13 million
per month
Share this article
Author
Oliver
  • Published: September 23, 2025
  • Updated: September 23, 2025
Related Articles
Illustration of a smartphone screen displaying an app with highlighted code labeled ‘Code with malware,’ symbolizing malicious apps hidden on mobile devices.
Inside SlopAds: How 224 Fake Apps Turned 38 Million Phones Into Ad-Bots
Illustration of a web browser window showing a highlighted advertisement space with a stylized fake human face marked with an ‘X,’ symbolizing a deepfake ad.
AI Generated Deepfake Adverts Are Exploding And Platforms Can’t Keep Up
Graphic with the Google logo followed by the words ‘AI Max’ in bold white text on a dark background, representing Google’s AI Max product.
Google’s AI Max: 5 Facts Every Marketer Needs to Know
How much of your marketing is wasted on fake traffic?
1%, 4%, 36%?
Try fraud0 7 days for free and find out. No credit card required.
4.9 out of 5 stars
Want a tour of fraud0?
Request a demo
Try fraud0 for 7 days
No credit card required.

Already have an account? Log in

Onsite Intelligence
In-Ad Measurement
Integrations
Usercentrics
Plans
Success Stories
About fraud0
Career
Schedule demo
Login
News
Blog
Whitepaper
Webinars & Videos
Glossary
FAQ
Try for free