logo
Apollo Exposed: What 400M Fake Ad Requests Reveal About Fraud

Apollo Exposed: What 400M Fake Ad Requests Reveal About Fraud

Forbes17-04-2025
Audio advertising is booming. With programmatic audio spend projected to surpass $2 billion in 2025, it's become one of the most promising—and vulnerable—channels in digital media. Where innovation leads, cybercrime follows. And the recent Apollo operation uncovered by HUMAN and The Trade Desk is a case study in just how sophisticated, and damaging, that fraud can be.
At its peak, Apollo accounted for 400 million fraudulent bid requests per day, making it the largest audio-related ad fraud scheme ever detected. But what makes Apollo especially troubling isn't just the scale—it's how convincingly it mimicked legitimate traffic, exploited supply chain blind spots, and leveraged malware-infected CTV devices to obscure its origin.
I spoke with Will Herbig, senior director for AdTech Fraud Research & Strategic Customer Analytics at HUMAN, about the research. He explained that Apollo preyed on a fundamental weakness in server-side ad insertion, the technology used to serve seamless audio and video ads without interrupting user experience. With SSAI, advertisers receive limited telemetry—often just a user-agent string and an IP address—making it an ideal environment for spoofing.
Fraudsters behind Apollo reverse-engineered the ad request flows of legitimate apps, replicating their formats to impersonate real audio ad inventory. They even spoofed apps that shouldn't have been serving audio at all.
'One of the things that sparked this investigation was the question of, why are puzzle apps serving audio ads?' Herbig told me. 'At least in my experience, it's uncommon that a puzzle app or something like that is going to serve an audio ad.'
It was a subtle anomaly—but it set off a cascade of deeper analysis that ultimately exposed Apollo's intricate fabrication tactics.
Apollo's traffic wasn't generated by infected devices in the traditional sense. Instead, bid requests were fabricated wholesale—generated by script, spoofed to resemble real devices, and funneled through residential proxies to mask their true data center origins. Herbig emphasized that the scale Apollo operated at generated traffic equivalent to a the traffic of a mid-sized city like Stamford, Connecticut.
That scale was achieved in part thanks to BADBOX 2.0, a botnet of over a million compromised connected TV devices. Apollo traffickers leveraged BADBOX to route requests through residential IPs, making the traffic appear legitimate and difficult to trace. HUMAN had previously disrupted BADBOX, but its infrastructure was clearly still being exploited.
By layering spoofed app identities, forged device configurations, and residential proxy evasion, Apollo's operators built a fraud operation that slipped through many traditional defenses.
The real damage, however, was in how Apollo exploited programmatic advertising's fragmented supply chain. Many platforms only validate the final seller in a transaction—a check that Apollo often passed. But those 'authorized' sellers were frequently several layers removed from the spoofed origin.
'There can be non-compliance in earlier parts of the supply chain, and then as you get to later parts, things look valid,' Herbig said. 'Many implementations of these supply chain standards are only checking the last place that came from, so everything that happened before that is kind of out of scope.'
This phenomenon—what HUMAN refers to as 'supply chain convergence'—allows spoofed inventory to piggyback on authorized reseller pathways, creating a false sense of legitimacy. It's a loophole that remains dangerously under-policed in today's real-time bidding ecosystem.
HUMAN didn't just uncover Apollo—they helped dismantle it. Leveraging a predictive pre-bid scoring engine and an aggressive response strategy, the company saw a 99% reduction in Apollo-associated traffic across its platform.
'We are effectively demonetizing this supply,' Herbig said. 'By reducing the amount of bids that this inventory is getting… we're making it harder and harder for fraudsters to profit.'
The broader goal, Herbig explained, is to make ad fraud uneconomical at scale. Each operation disrupted increases the operational cost for cybercriminals. Every layer of complexity—whether it's a disrupted proxy network, stricter supply chain checks, or tighter SDK enforcement—raises the barrier to entry.
One of the strongest weapons against operations like Apollo isn't just technology—it's collaboration. HUMAN has leaned heavily into this strategy through its Human Collective, a multi-stakeholder initiative aimed at threat sharing and collective protection.
According to Herbig, 'One of the great things we're doing is threat sharing. When we are observing concentrations of IBT, we are discussing that with the Human Collective, and we're using it as a forum for collaboration and a forum for discussion.'
By sharing intelligence, surfacing patterns, and coordinating responses, HUMAN and its partners are creating a ripple effect across the programmatic ecosystem. The goal isn't to eliminate fraud entirely—it's to tip the cost-benefit equation against the fraudsters.
As Herbig put it, 'We're trying to disrupt the economics of cybercrime… to the point that it becomes not worth it.'
Apollo is a milestone—not just in the scope of audio ad fraud, but in how the industry responds to it. The findings call for stronger adoption of third-party verification tools like the Open Measurement SDK, more rigorous end-to-end supply path validation, and above all, tighter industry-wide collaboration.
Audio may be one of the newest frontiers in ad fraud, but it doesn't have to be the most vulnerable. With vigilance, transparency, and cooperation, the industry has a fighting chance to turn down the noise and restore trust in programmatic audio.
Orange background

Try Our AI Features

Explore what Daily8 AI can do for you:

Comments

No comments yet...

Related Articles

Paycom unveils IWant: Command-driven AI engine with accurate, rapid results
Paycom unveils IWant: Command-driven AI engine with accurate, rapid results

Yahoo

time2 hours ago

  • Yahoo

Paycom unveils IWant: Command-driven AI engine with accurate, rapid results

OKLAHOMA CITY, July 30, 2025--(BUSINESS WIRE)--Paycom Software, Inc. (NYSE: PAYC) ("Paycom"), a leading provider of comprehensive, cloud-based human capital management software, today announced the launch of IWant, the industry's first command-driven AI engine that revolutionizes the way all users navigate and access their information within a single database. Users can prompt IWant by utilizing voice-to-text functionality or by simply typing a question, and the AI engine immediately provides the answer or directs them to the appropriate location to interact with their information. IWant is designed to return results that will always be accurate because it pulls from employee data entered into Paycom's single database, not from multiple sources. This eliminates issues created by duplicate or inconsistent data. IWant is available to clients on mobile through Employee Self-Service® and Manager on-the-Go® (both located in the Paycom app) and on desktop through the client login page. By eliminating navigation barriers and making employee data more accessible than ever, IWant empowers users to tap into the power of that data within Paycom's single database, regardless of their level of familiarity with the software. "IWant is the biggest release since our founding in 1998," said Chad Richison, Paycom founder and CEO. "Command-driven automation marks the beginning of the future of all software. Navigation, information gathering and asking others for information will soon become obsolete. IWant gives you all of the information and access without needing to know how to use the system." With IWant, Paycom users gain an easy, automated avenue for seeking information about employee data without having to navigate through the software. For employees: IWant assists employees with fast answers about their employee data, including time-off balances, 401(k) contribution percentages, schedules, tax withholdings, paycheck amounts, pay history, benefits and more. For HR, C-suite and managers: IWant supports HR teams and makes an organization's leaders smarter by providing instant employee information about coverage thresholds, time-off schedules, overdue trainings, pay changes, who's clocked in for the day, time-off requests, salary information, employment history, performance reviews and more. "Paycom's single database has strategically set them apart since day one, paving the way for continued breakthroughs like IWant," said Steve Boese, HR Technology Conference program co-chair. "I particularly like IWant's Executive Mode and can see how this AI engine will transform not only the way leaders interact with company data but how they lead with data moving forward." An executive in the distribution industry who participated in the client pilot of IWant was impressed with how easily and quickly he could access workforce data. "It's a night and day difference," the executive said. "IWant makes everyone a system expert, so I can access all the info I need without navigating beyond the home screen. And I don't rely on others for employee data anymore. It's a total game changer." Paycom's unique, single-database software is designed to allow for a seamless flow of data across its HR suite, eliminating inaccuracies associated with duplicate or disparate data that comes from integrating multiple systems. To learn more or watch a demo of IWant, visit About Paycom For over 25 years, Paycom Software, Inc. (NYSE: PAYC) has simplified business and employees' lives through easy-to-use HR and payroll technology to empower transparency through direct access to their data. From onboarding and benefits enrollment to talent management and more, Paycom's employee-first technology leverages full-solution automation to streamline processes, drive efficiencies and give employees power over their own HR information, all in a single app. Paycom's single database combines all HR and payroll data in one place, providing a seamless and accurate experience without the errors and inefficiencies associated with integrating multiple systems. Recognized globally for its technology and workplace culture, Paycom serves businesses of all sizes in the U.S. and internationally. View source version on Contacts Media Contact: Larisha Huntermedia@ Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data

What's on Cupid's Mind at Versailles? AI Can Tell You.
What's on Cupid's Mind at Versailles? AI Can Tell You.

New York Times

time3 hours ago

  • New York Times

What's on Cupid's Mind at Versailles? AI Can Tell You.

Early one midsummer afternoon in the Palace of Versailles' gardens, a pigeon landed effortlessly on a masterpiece of French outdoor sculpture: a 17th-century statue of Apollo on a chariot, pulled by four horses. The statue, made of gilded lead, has stood in a vast fountain at Versailles in the three-plus centuries since Louis XIV was king of France — and it has now entered the digital age via a new feature on the historic site's app: Powered by the tech giant OpenAI, the company behind ChatGPT, an audio tool lets visitors (on or off site) converse with 20 outdoor statues in three languages. On that summer afternoon, I put the chatbot to the test. I asked Apollo a few obvious questions — who had put him there, what he represented — and received textbook answers, delivered in perfect English by a confident male voice. Then, spotting the pigeon still perched on Apollo's head, I opted for a bolder line of questioning: What if a pigeon took a toilet break on this peerless treasure? 'When pigeons show their affection on my chariot, it's hardly a grand moment. But the caretakers of Versailles are vigilant,' Apollo replied. 'They ensure I remain in shining condition, restoring my brilliance after such interruptions. So no lasting harm from those little birds!' Versailles receives 8.4 million visitors a year, according to France's culture ministry, more than any other French heritage site except the Louvre Museum. Yet 80 percent of them are international tourists, and their average age is 40. So the palace is engaging with OpenAI and other big tech companies with the hope of not just informing visitors, but also luring audiences that are younger and more homegrown. (The New York Times filed a copyright infringement lawsuit against OpenAI for using published work without permission to train its artificial intelligence. OpenAI has denied those claims.) Want all of The Times? Subscribe.

ADP forecasts annual 2026 revenue growth below estimates
ADP forecasts annual 2026 revenue growth below estimates

Yahoo

time4 hours ago

  • Yahoo

ADP forecasts annual 2026 revenue growth below estimates

(Reuters) -Automatic Data Processing forecast full-year 2026 revenue growth slightly below analyst estimates on Wednesday, as demand for its payroll and human capital management services softened amid ongoing economic uncertainty. Businesses have tightened spending in response to elevated interest rates and a volatile macroeconomic environment, weighing on demand for companies such as ADP. The conservative forecast comes as the industry undergoes consolidation and enterprises seek to deploy cash reserves to expand operations. In a bid to strengthen its market position, ADP acquired management services provider WorkForce Software last year. For the full year 2026, the company expects revenue growth between 5% and 6%, the midpoint of which is below analysts' growth expectations of 5.7%, according to data compiled by LSEG. The company expects revenue from PEO services to grow in the 5% to 7% range, while analysts expect it to grow about 5.7%. For the fourth quarter, the company reported revenue of $5.12 billion, compared with analysts' estimate of $5.04 billion. Revenue for its PEO segment grew 7% to $1.66 billion. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data

DOWNLOAD THE APP

Get Started Now: Download the App

Ready to dive into a world of global content with local flavor? Download Daily8 app today from your preferred app store and start exploring.
app-storeplay-store