Your Phone Is a Trap: The AI Scam Inside Google Discover

The Notification That Changed Everything

Imagine checking your phone and seeing an urgent alert: “IRS Deposit $1390 Approved” or “Police Arrest Warrant Issued.” Your heart races. You click. And just like that, you’ve walked into a trap.

cyberattack
cyberattack

This isn’t a dystopian thriller. It’s happening right now. Cybersecurity researchers have uncovered Pushpaganda—a massive AI-driven cyberattack campaign exploiting Google Discover to push malicious notifications to millions of users. 

At its peak, this operation generated approximately 240 million fraudulent ad bid requests across 113 domains in just seven days. 


Why This Matters Now

Your trusted news feed is no longer safe.

Google Discover—the personalized feed that appears on Android home screens and Chrome tabs—has become the latest battleground in the cybercrime economy. Threat actors are weaponizing AI to create sensational content that bypasses traditional security measures. 

What makes this attack uniquely dangerous is how it operates:

  • No malware needed. The scam exploits legitimate browser features rather than breaking into devices. 

  • AI-generated content at scale. Attackers produce thousands of convincing articles with minimal effort. 

  • Persistent notification channels. Once enabled, these alerts provide a direct line to victims. 


How the Attack Chain Works

The Pushpaganda cyberattack follows a carefully orchestrated flow that preys on human psychology.

Step 1: The Hook

Users encounter AI-generated, sensationalist news articles in their Google Discover feed. Headlines are designed to trigger immediate reactions—fake government deposits, alarming tax notices, or unbelievable smartphone deals. 

Step 2: The Redirect

Clicking the article leads to attacker-controlled domains hosting fabricated stories. These pages immediately prompt users to enable browser notifications under false pretenses. 

Step 3: The Notification Stream

Once permission is granted, the attack escalates. Users receive persistent alerts that bypass ad blockers entirely. These notifications deliver:

  • Fake arrest warrants and police notices

  • Fabricated missed calls from family members

  • False bank alerts and financial emergencies 

Step 4: The Monetization Engine

Behind the scenes, JavaScript rotation mechanisms cycle through actor-owned pages, inflating traffic metrics and generating fraudulent advertising revenue. 

This technique is particularly insidious because it transforms real users with legitimate devices into unwitting sources of scam traffic. 


The Role of AI in Modern Cyberattacks

Pushpaganda represents a troubling evolution in cybercrime. By combining AI-generated content with SEO manipulation, threat actors can scale operations rapidly with minimal manual effort. 

Common tactics include:

  • Generating high-volume, low-value content at scale

  • Scraping existing data sources to fabricate new pages

  • Creating networks of websites to disguise the operation’s true scale 

The campaign initially targeted users in India before expanding to the United States, Australia, Canada, South Africa, and the United Kingdom. 


How to Protect Yourself

Stop clicking “Allow” on unfamiliar notification prompts.

Security experts recommend the following steps:

  1. Review browser notification permissions immediately. On Chrome for Android, navigate to Settings → Site Settings → Notifications and revoke access for unfamiliar domains. 

  2. Never click “Allow” on prompts from websites reached through news feed links. Treat any unexpected notification mimicking legal or financial authorities as a potential social engineering attempt. 

  3. Be skeptical of sensational headlines. If a deal or alert seems too good—or too alarming—to be true, it probably is.

  4. Monitor for unusual push notification activity on your devices and report suspicious behavior to your organization’s security team. 


What Google Is Doing

In response to the Pushpaganda findings, Google has deployed fixes to address the spam vulnerabilities exploited by the campaign. The company emphasized that existing spam-fighting systems are designed to maintain high-quality standards across Search and Discover. 

Google’s countermeasures include:

  • Continuous algorithm updates

  • Strict enforcement against manipulative content

  • Proactive filtering of low-quality, AI-generated scareware material 

However, researchers continue to monitor for new Pushpaganda-associated domains and anticipate further threat actor adaptation. 


Frequently Asked Questions

What is Pushpaganda?

Pushpaganda is a sophisticated cyberattack campaign that combines AI-generated content with SEO manipulation to distribute malicious notifications through Google Discover feeds. The operation was discovered by HUMAN’s Satori Threat Intelligence and Research Team. 

How does AI power this cyberattack?

Threat actors use artificial intelligence to generate sensational headlines and articles at scale, making it easier to create convincing bait. AI also helps produce deepfake images and videos that lend false credibility to scams. 

Can I be affected by this attack?

Yes. The campaign initially targeted Android and Chrome users in India but has expanded to the United States, Australia, Canada, South Africa, and the United Kingdom. 

What should I do if I’ve already allowed suspicious notifications?

Immediately revoke notification permissions for unfamiliar domains through your browser settings. On Chrome for Android, go to Settings → Site Settings → Notifications. 

Is Google fixing this issue?

Yes. Google has deployed a fix to prevent low-quality, manipulative AI-generated content from surfacing in Discover feeds. However, staying vigilant remains essential as attackers adapt. 


The Bottom Line

The Pushpaganda campaign reveals a sobering truth: our trust in curated content feeds is being weaponized. When AI can mass-produce convincing bait at industrial scale, the line between legitimate news, spam, and cyber fraud becomes dangerously thin. 

Protecting yourself starts with a simple habit: pause before you click. That single moment of hesitation might be all that stands between you and a persistent scam channel. The notification that’s grabbing your attention right now—do you really know who sent it?

Leave a Comment