“It doesn’t stop with the stacked ads, though. For as many of those as might be rendering on a user’s device at once, they keep loading new ads until the ad slot with the malicious ad code is closed. The actors behind the VASTFLUX scheme clearly have an intimate understanding of the digital advertising ecosystem,” stated the company. In order to mislead both the advertising companies and the applications that display adverts, the campaign also produced an endless “playlist” of advertisements. VASTFLUX’s takedown comes three months after Scylla’s disruption, a fraud operation targeting advertising Software Development Kits (SDKs) within 80 Android apps and 9 iOS apps released on the official stores. VASTFLUX was also involved in the most recent ad fraud botnet that has been stopped in recent years after 3ve, PARETO, and Methbot.