Detecting hidden malicious ads

February 22, 2016

EVANSTON, Ill. --- The danger of acquiring a computer virus or spyware used to come with the risk of visiting the dark, sketchy corners of the Internet. But now trusted and harmless smartphone apps like MyFitnessPal and Candy Crush carry their own risks.

"Even reputable apps can lead users to websites hosting malicious content," said Yan Chen, professor of computer science at the Northwestern University McCormick School of Engineering. "No matter what app you use, you are not immune to malicious ads."

Most people are accustomed to the ads they encounter when interacting with apps on mobile devices. Some pop up between stages in games while others sit quietly in the sidebars. Mostly harmless, ads are a source of income for developers who often offer their apps for free. But as more and more people own smartphones, the number of malicious ads hidden in apps is growing -- tripling in just the past year.

In order to curb attacks from hidden malicious ads, Chen and his team are working to better understand where these ads originate and how they operate. This research has resulted in a dynamic system for Android that detects malicious ads as well as locates and identifies the parties that intentionally or unintentionally allowed them to reach the end user.

Last year, Chen's team used its system to test about one million apps in two months. It found that while the percentage of malicious ads is actually quite small (0.1 percent), the absolute number is still large considering that 2 billion people own smartphones worldwide. Ads that ask the user to download a program are the most dangerous, containing malicious software about 50 percent of the time.

Ad networks could potentially use Chen's system to prevent malicious ads from sneaking into the ad exchange. Ad networks buy space in the app through developers, and then advertisers bid for that space to display their ads. Ad networks use sophisticated algorithms for targeting and inventory management, but there are no tools available to check the safety of each ad.

"It's very hard for the ad networks," Chen said. "They get millions of ads from different sources. Even if they had the resources to check each ad, those ads could change."

The team will present their research, findings, and detection system on Monday, Feb. 22, 2016 at the 2016 Network and Distributed System Security Symposium in San Diego, California.

Chen's work culminated from the exploration of the little-studied interface between mobile apps and the Web. Many in-app advertisements take advantage of this interface: when users click on the advertisement within the app, they are led to an outside web page that hosts malicious content. Whether it is an offer to download fake anti-virus software or fake media players or claim free gifts, the content can take many forms to trick the user into downloading software that gathers sensitive information, sends unauthorized and often charged messages, or displays unwanted ads.

When Chen's detection software runs, it electronically clicks the ads within apps and follows a chain of links to the final landing page. It then downloads that page's code and completes an analysis to determine whether or not it's malicious. It also uses machine-learning techniques to track the evolving behaviors of malware as it attempts to elude detection.

Currently, Chen's team is testing ten-times more ads with the intention of building a more efficient system. He said their goal is to diagnose and detect malicious ads even faster. As people put more and more private information into their phones, attackers are motivated to pump more malicious ads into the market. Chen wants to give ad networks and users the tools to be ready.

"Attackers follow the money," Chen said. "More people are putting their credit card and banking information into their phones for mobile payment options. The smartphone has become a treasure for attackers, so they are investing heavily in compromising them. That means we will see more and more malicious ads and malware."

Northwestern University

Related Smartphones Articles from Brightsurf:

Motorists' smartphones may help highways bosses keep roads safe
Motorists with smartphones could help highway chiefs maintain road quality by sending 'crowdsourced' data from their mobiles that would allow engineers to assess when carriageway repairs are needed, according to a new study.

Next-gen smartphones to keep their cool
Multilayered carbon material could be the perfect fit for heat management in electronic devices.

With digital phenotyping, smartphones may play a role in assessing severe mental illness
Digital phenotyping approaches that collect and analyze Smartphone-user data on locations, activities, and even feelings - combined with machine learning to recognize patterns and make predictions from the data - have emerged as promising tools for monitoring patients with psychosis spectrum illnesses, according to a report in the September/October issue of Harvard Review of Psychiatry.

Smartphones can predict brain function associated with anxiety and depression
Phone data such as social activity, screen time and location can predict connectivity between regions of the brain that are responsible for emotion.

Smartphones can tell when you're drunk by analyzing your walk
Your smartphone can tell when you've had too much to drink by detecting changes in the way you walk, according to a new study published in the Journal of Studies on Alcohol and Drugs.

Smartphones are lowering student's grades, study finds
The ease of finding information on the internet is hurting students' long-term retention and resulting in lower grades on exams, according to a Rutgers University-New Brunswick study.

Smartphones may help detect diabetes
Researchers at UC San Francisco have developed a ''digital biomarker'' that would use a smartphone's built-in camera to detect Type 2 diabetes - one of the world's top causes of disease and death - potentially providing a low-cost, in-home alternative to blood draws and clinic-based screening tools.

Smartphones prove to be time-saving analytical tools
Scientists use a smartphone camera to easily measure soil density -- a key metric for analyzing our soils

Why smartphones are digital truth serum
People are more willing to reveal personal information about themselves online using their smartphones compared to desktop computers.

Which comes first: Smartphone dependency or depression?
New research suggests a person's reliance on his or her smartphone predicts greater loneliness and depressive symptoms, as opposed to the other way around.

Read More: Smartphones News and Smartphones Current Events is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to