A large-scale ad fraud operation named 'Scallywag' has been generating 1.4 billion fraudulent ad requests daily through malicious WordPress plugins targeting piracy and URL shortening sites. Though efforts by the detection firm HUMAN have reduced Scallywag's operations by 95%, the perpetrators are adapting by rotating domains and exploring new monetization strategies.