HUMAN

We’re #hiring! Join us in our mission to protect the integrity of the internet. #KnowWhosReal

ICYMI, per The Hacker News: HUMAN’s Satori Threat Intelligence and Research Team uncovered Trapdoor, an Android ad fraud and malvertising operation spanning 455 malicious apps and 183 threat actor-owned domains. At its peak, the scheme drove 659 million daily bid requests and was tied to apps downloaded more than 24 million times, showing how quickly threat actors can turn everyday utility apps into a self-sustaining fraud pipeline. See the full article in the comment below.

🚨 New research from the Satori Threat Intelligence team is live: Trapdoor — a massive fraud operation disrupted in collaboration with Google . 455 malicious Android apps. 183 threat-actor-controlled domains. 24M+ app downloads. 659M bid requests per day at peak activity. Trapdoor operated as a self-sustaining fraud pipeline, using malvertising, stealthy app installs, and advanced anti-analysis techniques to scale mobile ad fraud globally. For ad tech and security teams, this is a reminder that it’s not enough to look only at app behavior. Defenders must also identify and disrupt the shared cashout infrastructure powering multiple operations simultaneously. Proud of the incredible work from the Satori team and our partners at Google to expose and disrupt this operation. https://lnkd.in/gJvMYuG3

Last week, our EMEA team attended RetailX Events' #CommerceMediaFestival in London. Gabriel Cirlig, Director of Threat Intelligence, joined the CTV Summit panel exploring how trusted outcomes are only possible when built on trusted signals, and what it takes to verify the integrity of the digital supply chain. Jennifer Ukaegbu, EMEA Marketing Director, joined the FMCG Summit panel on AI and the customer journey. Agentic AI is rising at a rapid pace — and for brands that get ahead of it, it represents an entirely new audience opportunity. But that's only possible with visibility into who and what is interacting with your digital channels. The brands that will win in agentic commerce are the ones that can see and understand this new audience first. Great to connect with so many people across the industry and hear how retail media is evolving. Until next time. Daniel Bond Adam Rowley Jay Patel

We’re #hiring! Join us in our mission to protect the integrity of the internet. #KnowWhosReal

We’re #hiring! Join us in our mission to protect the integrity of the internet. #KnowWhosReal

Today, HUMAN Director of Threat Intelligence Gabriel Cirlig joined a powerhouse panel at RetailX Events' CTV Summit today featuring Kaleesha R. of Amazon Ads, Richard Brant of Vevo, Marie-Clare Puffett of IAB Europe, and Alex Knapman of Halfords. As the Connected TV landscape matures, the industry's focus is shifting: trusted outcomes are only possible when they are built on trusted signals. Verifying the integrity of the digital supply chain is the first step toward achieving measurable, real-world results in CTV.

Your smart bidding platform doesn't know it's learning from bots. Invalid traffic doesn't just waste spend. It trains your optimization models on the wrong signals. Bidding strategies optimize toward the wrong audience. Performance plateaus with no obvious cause. And there's nothing in the dashboard that explains why. HUMAN's data puts a number on how hard this is to solve: across more than one quadrillion interactions analyzed in 2025, only half a percentage point separates benign automation from malicious automation. No exclusion list resolves that. The first piece in our new series, "When Performance Is on the Line" breaks down why traffic quality is a performance problem, and where the leverage actually is. Check it out at the link in the comments.

We’re #hiring! Join us in our mission to protect the integrity of the internet. #KnowWhosReal

Join us for our next HUMAN Dialogue: Spring of Satori: Inside our Latest Investigations and the Threat Landscape of 2026. In this session, HUMAN’s Satori Threat Intelligence team will unpack the latest threat activity observed in the wild, including signals ahead of Super Bowl 2026, emerging abuse involving OpenClaw, and the broader rise of agentic activity across the internet. You’ll hear from Gabriel Cirlig, Aviad Kaiserman, and Lindsay Kaye as they break down what these shifts mean for fraud, bot activity, and the next phase of cyberthreats. If you’re tracking how attackers are evolving alongside new tools and automation, this is a conversation worth joining. Don’t miss it!