14 DAY TRIAL // Google warned developers to remove the BatMobi, AltaMob, and YeahMobi third-party ad network SDKs which use install attribution abuse techniques while recommending the use of the Google Play Install Referrer API for measuring app install ads.
This follows the discovery of eight Android apps with roughly 2 billion installs and around 700 million monthly active users supposedly engaged in large-scale ad fraud.
"If an app violates our Google Play Developer policies, we take action," according to Dave Kleidermacher, Android & Play VP and Head of Security & Privacy.
Moreover, "That’s why we began our own independent investigation after we received reports of apps on Google Play accused of conducting app install attribution abuse by falsely claiming credit for newly installed apps to collect the download bounty from that app’s developer."
The Google Play Install Referrer API recommended by Google to developers who previously used one of the three ad network SDKs found to exhibit install attribution fraud behavior was designed to be resistant to this type of ad fraud.
Google removed four of the eight Android apps found to be a part of the ad fraud scheme
Developers who used the ad defrauding SDKs have been asked to remove them from their apps and, given that Google believes they were not aware of their malicious behavior, also received a grace period to take action and sanitize their products.
Kleidermacher also added that Google's "investigation is ongoing and additional reviews of other apps and third party SDKs are still underway. If we find evidence of additional policy violations, we will take action."
Until now, Cheetah Mobile’s CM Locker, File Manager, and Battery Doctor have already been removed from the Google Play store, together with the Kika Keyboard app following its ongoing investigation of the ad fraud incident exposed by Kochava's security research team.
However, Google left all the other apps involved in the ad fraud scandal untouched at the end of the investigation they might all be kicked out of the store if the developers will not remove the malicious SDKs.