According to Pixalate’s latest research, the bundle ID (paramountstreaming), which was observed across Roku traffic, was at the top of the AdFraud IOC-DB: Fraudulent CTV Bundle IDs list, followed by the bundle ID (paramountstreaming) for Amazon Fire TV
LONDON, May 7, 2026 -- Pixalate, an ad fraud and privacy compliance platform, today released the April 2026 AdFraud IOC-DB: Fraudulent CTV Bundle IDs Report for Apple TV, Roku, Samsung Smart TV, and Amazon Fire TV Connected TV (CTV) app stores.
The report surfaces Connected TV (CTV) bundle IDs observed in the programmatic supply chain that are associated with fraudulent or malformed identifiers, and ranks them by open programmatic advertising traffic volume, as measured by Pixalate. It is based on Pixalate’s AdFraud Indicators Of Compromise (IOC)-Database, the ad industry’s first open-source intelligence feed designed to aid fraud researchers, developers, and system administrators in the fight against Invalid Traffic (IVT).
|
Rank |
Watchlist |
Risk |
Identifier |
Platform Name |
OS |
|
1 |
Fraudulent CTV Bundle IDs |
High |
paramountstreaming |
Roku |
Roku |
|
2 |
Fraudulent CTV Bundle IDs |
High |
paramountstreaming |
Amazon |
Fire OS |
|
3 |
Fraudulent CTV Bundle IDs |
High |
paramountstreaming |
Samsung |
Samsung |
|
4 |
Fraudulent CTV Bundle IDs |
High |
g20251100501 |
Samsung |
Samsung |
|
5 |
Fraudulent CTV Bundle IDs |
High |
g20251200581 |
Samsung |
Samsung |
Download the April 2026 AdFraud IOC-DB: Fraudulent CTV Bundle IDs report:
The publicly available AdFraud IOC-Database is Pixalate's open-source, weekly-updated list of the top 50 highest-risk ad fraud Indicators of Compromise (IOCs). AdFraud IOC-DB is powered by Pixalate's MRC-accredited ad fraud detection engine, which analyzes 183 billion global data points daily. It filters massive datasets down to the 50 most critical threats, allowing sysadmins to easily integrate high-risk blocklists without overwhelming their infrastructure. The AdFraud IOC-DB reveals the top 50 IOCs observed across multiple supply-path touchpoints, including IP addresses (both IPv4 and IPv6), device IDs (mobile and CTV), datacenters, fraudulent Bundle IDs, MFA publishers, and delisted apps.
The AdFraud IOC-DB is available for free on Pixalate's website, where users can see the weekly top 50 IOCs across 11 risk categories.
About Pixalate
Pixalate is a global platform specializing in privacy compliance, ad fraud prevention, and digital ad supply chain data intelligence. Founded in 2012 and recognized by UNICEF, Pixalate is trusted by regulators, data researchers, advertisers, publishers, ad tech platforms, and financial analysts across the Connected TV (CTV), mobile app, and website ecosystems. Pixalate is accredited by the MRC for the detection and filtration of Sophisticated Invalid Traffic (SIVT). pixalate.com
Disclaimer
The content of this press release, and the April 2026 AdFraud IOC-DB - Fraudulent CTV Bundle ID Report (the ‘Report’), reflect Pixalate's opinions with respect to factors that Pixalate believes may be useful to the digital media industry. Any data shared is grounded in Pixalate’s proprietary technology and analytics, which Pixalate is continuously evaluating and updating. Any references to outside sources should not be construed as endorsements. Pixalate's opinions are just that, opinions, which means that they are neither facts nor guarantees. Pixalate's opinions are just that, opinions, which means that they are neither facts nor guarantees. Pixalate is sharing this data not to impugn the standing or reputation of any entity, person or app, but, instead, to report findings and trends pertaining to programmatic advertising activity across in the time period studied. Per the Media Rating Council (MRC), “‘Invalid Traffic’ is defined generally as traffic that does not meet certain ad serving quality or completeness criteria, or otherwise does not represent legitimate ad traffic that should be included in measurement counts. Among the reasons why ad traffic may be deemed invalid is it is a result of non-human traffic (spiders, bots, etc.), or activity designed to produce fraudulent traffic.” Where the traffic characteristics are suggestive of deliberate intent to mislead, such IVT is often referred to as “ad fraud.” Also per the MRC, “'Fraud' is not intended to represent fraud as defined in various laws, statutes and ordinances or as conventionally used in U.S. Court or other legal proceedings, but rather a custom definition strictly for advertising measurement purposes.”