Flashback Trojan maker missed out on fraudulent ad click payout

By on May 17, 2012, 6:30 PM

At the height of the Flashback Trojan, experts say it spread to more than 600,000 Macs worldwide. Aside from being a pain in the rear end of those who were infected, it was estimated that the author could be generating upwards of $10,000 per day in fraudulent ad clicks. Further analysis from Symantec, however, paints quite a different picture and it’s likely that the author never received any payment at all.

Despite being installed on over 600,000 machines, the ad-click component of Flashback was only installed on roughly 10,000 systems, or less than 2 percent of all infections. Symantec says that around 10 million fraudulent ads were displayed on compromised computers but users only clicked around 400,000 times. This resulted in only $14,000 for the code-writer over the course of three weeks.

The problem is that most ad networks have built-in anti-fraud protection and affiliate-verification methods in place to combat attempts to game the system. The security firm notes that the Flashback author likely didn’t complete the necessary steps to get paid. Based on analysis of traffic patterns, it seems that 98 percent of ads came from a single pay-per-click provider, something that might have tipped off the ad server.

It’s unclear why only 2 percent of systems were loaded with the ad-click component. Perhaps the author thought of the idea after the initial infections started or maybe they didn’t want to alert suspicion by having a huge influx of funds generated in a short time. Either way, in this instance, it seems the old adage of “crime doesn’t pay” reigns true.




User Comments: 7

Got something to say? Post a comment
PinothyJ said:

How can these payment NOT be traced in this day and age...

NTAPRO NTAPRO said:

$14,000 isn't bad for 3 weeks :P

Cota Cota said:

<p>$14,000 isn't bad for 3 weeks :P</p>

But how about the time he spend doing the Trojan?

Guest said:

You all are missing the point...the author of the virus obviously could care little...its about the skill of the code and proving that all those ignorant mac users who think they are above eveyone are no different than any other OS. .... the sheep have been sheared :-)

Flame on !!!

NTAPRO NTAPRO said:

<p>
<p>$14,000 isn't bad for 3 weeks :P</p>
</p>

<p><br /></p>

<p>But how about the time he spend doing the Trojan?</p>

Hard work pays off?

Marnomancer Marnomancer said:

Ah, ain't I so happy with Linux...

Guest said:

The truth was no hackers cared enough to make a virus for Mac, the real money was in the larger demographic of Windows. Then an article comes out saying Macs security is 10 years behind Windows.

Serves em right for acting holier than thou.

Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.