2 White hat uncover the secret : Hundreds of billions of black products on the Internet scare musk

source : New entropy (ID:baoliaohui) author : salad dressing edit : Yiye

Junk accounts on twitter , It is also a thirst quenching poison in the Chinese Internet .

Never in my wildest dreams , Musk and twitter will because “ Garbage account ” and “ Break up ”.

Beijing time. 7 month 19 Japan , Twitter v. musk held its first hearing , A judge in the state of Delaware announced that it would 10 In June, Musk's case of terminating the acquisition of twitter was tried .

before , Musk made a firm offer , To use 440 $billion to privatize twitter . But in the process of the acquisition in full swing , Musk suddenly announced the suspension of the acquisition , The reason is on twitter “ Garbage account ” Too much .

As early as 5 month , Musk has said , Twitter “ Junk accounts ” More than 19%, He may re-examine the acquisition for this reason .

Some analysts believe that “ Garbage account ” It's just Musk's excuse .“ Personally, musk thinks it's too expensive after asking for the price , So use ‘ Garbage account ’ Come and talk , Finally, I found that money was not easy to talk about ‘ Rotten ’ 了 .” Xiao Yang, a domestic analyst who has long paid attention to the incident, said .

However , Some people also believe that musk really cares about the authenticity of twitter accounts .

Colin, an overseas investor, said ,“ I don't think musk is manipulating the stock price or public opinion in the whole process of acquiring twitter , Musk often tweets about Tesla enterprises or products , Let's see your reaction . I think musk intended to turn twitter into a huge market research traffic portal , Therefore, the authenticity of accounts can directly affect the results , It's also what musk really cares about .”

Twitter was musk “ Drop off ” Why , Whether or not “ Junk accounts ” There may be controversy . But there is no doubt about these “ Junk accounts ”, Or in the Chinese context “ navy ”, Damage to the whole virtual and even the real world .

Engaged in Internet security “ White Hatter ” Swallow means ,2014 Mobile intelligent devices and APP After the rapid development of the industry ,“ navy ” Industry also began to prevail . In this year , Developed on the basis of false account “ refresh ”“ Brush the single ”“ Fake account number ”“ False click ” And other related black products , The market scale has broken through 1000 RMB 100 million .

01 Full of tricks “ Counterfeiting ” brigade

Swallow's data security company was founded in 2014 Around the year , It is also the era of rapid development of domestic mobile Internet . With the popularity of intelligent devices , Various mobile phone manufacturers began to build their own software malls , The ways of software promotion began to become various . 

The most classic is the recommendation inside the mobile software mall 、 And in the major APP Internal information flow advertising . 

“APP There are several common settlement methods when promoting , such as CPM( Settle according to the number of displays )、CPA( Settlement by user action ) perhaps CPC( Settle according to the number of clicks ). and APP The Lord usually chooses CPA.” Swallow introduced ,“ User actions here are prescribed by advertisers , There are some APP Just download and click to open , Others require users to complete their first registration .” 

therefore , Cheating methods to cope with the demand for promotion have also begun to appear . 

“ The cheating behavior of all false accounts can be highly summarized into two types —— The reuse of real devices and fake devices simulate user behavior . ” The swallow said . 

Reuse of real devices refers to restarting the same device 、 Brush the machine and other behaviors to change the certification mark of the equipment , Click the same advertising download channel repeatedly , Fake the illusion that different devices Click to download . 

“ The equipment certification mark here , You can understand the adult ID card .” Said the swallow , Mobile devices are marked and recognized in the Internet world through the identification of devices , Just as human beings have passed ID authentication in the real world . 

The logo of some mobile phones can be changed by simply restarting , So this also gives “ Brush the single ” The black industry has an opportunity . 

The other is simply using virtual machine simulation 、 Generate mobile phone information , Imitate user behavior to click 、 Download and even complete registration . 

“ Of course , There are also special fake devices with real people . Our industry is called ‘ Task wall ’. The channel will find some part-time college students or older people who want to earn extra money , Let them click to download a software and complete the registration , A registration fee ranges from a few yuan to dozens of Yuan .” Swallow said frankly . 

however , The counterfeiting cost of real devices is much higher than that of brush machines and virtual machines mentioned above , Therefore, it is not the most common means of cheating . 

Usually , After these fake accounts complete the task of registration “ Be accomplished ”. therefore , In the future, no one will operate account activities at all , For a long period of time “ lie ” stay APP Inside , It has also become commonly known “ Zombie ” perhaps “ navy ”. 

With APP More variety 、 It's more complex , Internet “ navy ” Their uses are also varied . 

Live broadcast APP The anchor on brushes gifts , For entertainment APP Blogger control comments , E-commerce APP The wool of , Even fake travel APP The order of ... these “ navy ” They are simply “ omnipotent ”. 

“ Say an operation that has opened my eyes recently .” Swallow shared with great interest what the company found last year about travel APP Fake means of virtual orders . 

Some trips APP The driver on the bus will receive a distant order , For example, from Chaoyang in Beijing to Yizhuang , There may be a higher unit price per customer , But if there is no order after running back, you will run short , If you count the fuel money and the traffic jam time inside and outside, you won't make much money . 

last year , Customers of swallow company reflected to them , Found a black product , Specially simulate virtual orders . Due to some newer trips APP In order to encourage drivers to register, the platform will first settle the order fee to drivers , After the user settles to the platform , The platform will charge this fee , Therefore, the black industry has caught this loophole . 

Black products send virtual orders to drivers through technical means , After the driver receives the order , The platform will first subsidize the cost to the driver , The driver ran back to the city center from a far away place and ended the virtual order . However , The order is false , There will be no real user to generate settlement , The platform finally becomes “ Injustice ”. 

“ Including the vouchers of XX and XX commodities sold at a very low price on some second-hand platforms . Part of it comes from virtual machines simulating real users to get vouchers in batches .” The swallow added ,“ however , It's just part of it , Not all .” 

02 APP And “ navy ” Of “ Sadistic love ”

“ I still remember the first big customer I talked about , After the test they APP There are more than 90% False users , He almost immediately rejected our product .” Xiaoyu, a programmer engaged in anti cheating on mobile devices, said . 

APP With these “ navy ” Sometimes our relationship is like a “ Sadistic love ”, Knowing that you are doing me no good , But I can't help it “ need ”. 

Internet entrepreneurship has long been used PPT And stories can finance the capital boom , There are even “ The internet no longer needs new APP” Sounds like that appear . therefore , In recent years APP The project wants to get the favor of capital , We need more solid user data and cash flow methods . 

Fangfang, who sells the anti cheating scheme, said , Once I was in telemarketing , The other party is a start-up that just lives more than 10000 days APP The person in charge told her directly , User data is not yet “ brush ” In place , What's the use of talking about user authenticity , Then hang up directly . 

This kind of project or enterprise that fuzzes the authenticity of users , It's not just a start-up that needs data to prove itself APP, There is also some maturity 、 Large scale platform . 

“ One of our regular customers is an entertainer APP, They only open anti cheating programs for users of our overseas business . The domestic business is delayed .” Swallow means . 

There are two reasons for this situation . firstly , large APP The audit of user data sharing permission is more strict . second , large APP There will be its own security department , Purchasing external security solutions will “ offend ” One's own , In addition, the interpersonal relationships of large Internet companies are more complex , The chain is longer , Therefore, the promotion effect is also slower . 

“ It's like once a customer made a fuss ‘ The Wulong incident ’.” Fang Fang said ,“ We and a community APP The data security department has been cooperating for more than a year , As a result, the business department of their company contacted us when it needed a plan , But I have no idea that my company has cooperated with us .” 

And even if there is a strong need for user authenticity APP, Will also take many detours on the road of anti cheating . 

“ some APP Yes, there is ‘ Anti cheating ’ Conscious , So they will ask for some deeper data to make it more difficult for fake accounts to cheat . such as , Seven day retention rate 、 Three consecutive days of landing, etc .” Swallow explained ,“ Settlement can only be made after the conditions are met .” 

However , Although the mandatory depth data demand increases the difficulty of cheating , But it also affects the authenticity of the data . 

“ I once came across a case , A startup APP The operation interaction of is not smooth enough , As a result, there are many precipitation users or users' rapid uninstallation , But in order to complete APP Continuous login requirements of main requirements , Promotion channels pass ‘ Technical means ’ Forced to achieve more than 80% Three day continuous landing rate , Temporarily blinded the developer , They also don't see problems from the data .” Swallow recalled . 

“ Authenticity ” It's these “ navy ” What you don't have , But missing “ Authenticity ” To a APP How deep is the influence of , But it is difficult to quantify , This is also for many years “ navy ” People are often punished but still “ The spring breeze blows again ” Why . Unless , Encounter stubbornly pursuing authenticity , Like musk . 

At the end

The Internet can say goodbye “ navy ” Do you ? 

in fact , As early as last year 9 month , There is the regulation of the Internet “ navy ” Introduction of new policies . 

Surging news 2021 year 9 month 18 Daily news , The state cyberspace Office recently released 《 Opinions on further compacting the responsibility of the main body of information content management of the website platform 》. Opinion request , Strengthen account registration management , Strictly implement the relevant requirements for real identity information registration ; Strengthen the disposal of illegal accounts , Strictly prevent the reincarnation of illegal accounts ; Comprehensive cleaning “ Zombie ”“ Shell number ”. 

however , The whole network of the Internet “ Qinglang ” It also needs to be “ White Hatter ” And APP Joint efforts of various subjects . 

Blacklist for data security tripartite platform 、 Technologies such as sensitive behavior detection strengthen the understanding of “ navy ” The identification of 、APP The main purpose is to improve the anti cheating awareness of false accounts 、 Gradually tightening the registration mechanism and real name authentication mechanism , Is the farewell of the whole network “ navy ” There is no shortage of “ Combined boxing ”. 

( The characters in the article are pseudonyms ) 

Reference material

《 Musk's acquisition is scheduled to 10 Monthly trial ,“ Garbage account ” The key to the attack and defense of a case ?》 Chain science world  

《 Comprehensive cleaning “ Zombie ”“ Shell number ”! The state has done it 》 Surging news