Google says it’s investigating how a text advertisement was injected into SMS messages containing two-step verification security codes. The ad was placed by a third-party advertising partner without Avira’s knowledge, Avira says. Google’s anti-SMS spam feature flagged the message as spam. The way the advertisements were presented raises questions about customer consent, what ad network is involved and what data is being shared or viewed by other parties. Avira decline to name the advertising partner or the company that placed the ad.”]
Source: https://www.cuinfosecurity.com/google-investigates-ad-injected-into-2fa-sms-messages-a-16975