Android users, there's a new malware on the block.
Called HummingBad, it was first spotted by security company Checkpoint in February 2016.
It starts as a drive by download attack where it tries to gain root access to an android device.
If that doesn't work, the malware tricks you into granting HummingBad system-wide permissions.
Once it's on the device, HummingBad force downloads the app and clicks on ads.
This makes sense considering it was created by a group of developers working alongside a Chinese advertising firm called Yingmob.
So far, it's estimated that 10 million devices have been infected, with the majority of those in China and India.
In the US, there are 288,000 compromised devices.
To put this all into perspective though, as of September 2015, there were 1.4 billion active Android devices worldwide.
Hummingbird also targets earlier versions of Andriod like KitKat and Jellybean rather than later irritations like Lollipop and Marshmallow.
So far the security firm hasn't offered a solution for identifying or removing the malware from infected devices and Google hasn't yet released a statement.