SlideShare a Scribd company logo

The Many Faces of Ad Fraud

Download as PPTX, PDF
White Ops
White Ops

Presented at ad:techSF 2015 by Michael Tiffany, the co-founder and CEO of White Ops, a security company founded in 2013 to break the profit models of cybercriminals, and Brandon Miller, Sr. Engagement Strategist for Carmichael Lynch.

Technology
1 of 56
#NoMoreAdFraud Brandon Miller, Carmichael Lynch Michael Tiffany, White Ops The Problem The Criminals The Solution The Bot World
The Problem The Criminals The Solution The Bot World
In 2014, The Bot Baseline found fraud in every kind of campaign we studied. The average loss to bots was 11%.
Bots are infecting the system. Fake web browsers go to real (or fake) sites, view real ads, and demand payment for the service
How big is the problem?
$6,300,000,000 $ $ $
The honest truth is…
…it’s worse than this. $6.3 billion is a conservative estimate, but that’s more than bad enough.
More significant is… Who Where
It’s coming from inside the house
Why you care: Your money gets home users hacked. You are being tricked into tracking bots. 1 2
Why hack home users? Hint: not to rob their digital funds and identities (not that they don’t)
If you want to get targeted, you (often) need a consumer’s identity. That can be arranged.
False assumptions: Bots are afraid of tracking (nope: hacked goods make them seem legitimate) Optimizing for performance, or viewability, or conversions squeezes out the bots automatically (nope) x x …our findings show otherwise.
Bot fraud is the scalable ad fraud Yes, you should probably care about pixel stuffing, ad clutter, ad collision, etc. etc. etc. But those things don’t happen on expensive placements. Those things don’t add up to $6.3 billion dollars. Those things don’t funnel money to organized crime. Your CFO cares about stopping money going to organized crime. He may not care about ad clutter.
The Problem The Criminals The Solution The Bot World
Ad fraud is not evenly distributed (Neither is tuberculosis)
Video is (on average): 2.1 times bottier than display
Almost a quarter of video advertisement goes to nobody
Display Programmatic Retargeting 54% bottier 73% bottier
Programmatic (buy at your own risk) X X33% Bots 3% Bots Exchange 1 Exchange 2
News Junkie Targeting (and Retargeting) Missed. Fake profiles and stolen cookies = retargeted campaigns had more bots, not less
Premium sites are “safer” but…
When publishers get a portion of their visitors from other sites on the web, they get bot traffic, too.
The Problem The Criminals The Solution The Bot World $
Advertiser Agency Exchanges Publisher Who’s the bad guy? Not these guys
Advertiser Agency Exchanges Publisher Who’s the bad guy? The real bad guys are the ones breaking into everyone’s computers
How do the bad guys make money?
…with fake sites.
…with fake sites. …when real sites need more traffic. &
Fake Sites  Awful content  Scraped or copied content  Objectively measurable  Hosts ads  Makes money Doesn’t matter; humans don’t visit
Sourced Traffic $ One site paying another to send more traffic
Sourced Traffic $ Sourced traffic is usually botty traffic (even for premium sites) especially
The attackers adapt Here they come. Turn the bots off! They’re leaving. Turn the bots back on. We have a complaint. Clean it up. Here they come again…
There are some interesting patterns… When advertisers demand more traffic, the differential between available humans and advertiser demand for traffic can be made up with bots. Bots will often supply traffic as needed in bursts – in this case, every Saturday
There are some interesting patterns… Not all botnets are run by geniuses: some bots are too dumb to keep daylight hours:
Old Browsers Are Bot Browsers Bots both: Cycle through many fake user-agents (browsers) to hide in the noise Provide real user- agents, but don’t get auto-updated Why are we still supporting old browsers?!
But patterns are not evidence.
• Taking on all the botnets at once requires hardcore malware reverse-engineering and major intelligence operations. • We’re in an arms race against the world’s best cybercriminals. • It’s fun to point out these patterns, but if all we had to do was find the patterns, this problem would have been solved already.
The Problem The Criminals The Victims The Solution
We all need to work together to solve the problem of ad fraud.
On the Sell Side, real can’t compete with fake If the Buy Side can’t tell the difference
In December 2014, on behalf of a large brand, the ad agency Carmichael Lynch decided to make an above-average campaign even better.
Carmichael Lynch’s Anti-Fraud Formula:  Monitor for fraud in all the brand’s campaigns  Use continuous monitoring (Detection) to hold all supply partners accountable and to reward great ones  Take proactive steps (Prevention) only where it makes sense for the buyer to take that burden
1. Top volume campaigns had expensive bot problems Top bot problems:
Solution: Protect high value media investment – reduce fraud where it hits the hardest by dollars Campaign Human Bots Bots % 1* 350M 20M 5% 2* 260M 20M 7% 3* 190M 14M 7% 4 76M 3M 4% 5* 63M 10M 13%
1. Top volume campaigns had expensive bot problems 2. Small but significant bot percentages across too many placements to address manually Top bot problems:
Solution: Anti-targeting! 5.90% 7.80% 6.70% 3.80% 3.40% 2/22, 13 MM 2/23, 15 MM 2/24, 16 MM 2/25, 14 MM 2/26, 13 MM Bot % of total
Solution: Anti-targeting! In one day, Carmichael Lynch cut the brand’s bot percentage by 43%. 5.90% 7.80% 6.70% 3.80% 3.40% 2/22, 13 MM 2/23, 15 MM 2/24, 16 MM 2/25, 14 MM 2/26, 13 MM Bot % of total
1. Top volume campaigns had expensive bot problems 2. Small but significant bot percentages across too many placements to address manually 3. Bot fraud varied by placement by time: being clean today didn’t guarantee being clean tomorrow Top bot problems:
In ongoing fraud-cutting activities, Carmichael Lynch improved traffic by cutting or repairing the worst offenders Solution: Continuous monitoring
Authorize and approve third-party traffic validation technology Be aware and involved Use third-party monitoring Budget for security Protect yourself, your users, and your media from ad fraud ✓ ✓ ✓ ✓ ✓ To defend against sophisticated and basic ad fraud attacks,
Thank You!

Recommended

Bot Benchmark study - White Ops & DCN
Bot Benchmark study - White Ops & DCNBot Benchmark study - White Ops & DCN
Bot Benchmark study - White Ops & DCNWhite Ops
 
White Ops & Videology Whitepaper
White Ops & Videology WhitepaperWhite Ops & Videology Whitepaper
White Ops & Videology WhitepaperWhite Ops
 
2015 Bot Baseline Report - White Ops & ANA
2015 Bot Baseline Report - White Ops & ANA2015 Bot Baseline Report - White Ops & ANA
2015 Bot Baseline Report - White Ops & ANAWhite Ops
 
Field Guide for Validating Premium Ad Inventory
Field Guide for Validating Premium Ad InventoryField Guide for Validating Premium Ad Inventory
Field Guide for Validating Premium Ad InventoryDistil Networks
 
Fraud in Digital Advertising (ANA study)
Fraud in Digital Advertising (ANA study)Fraud in Digital Advertising (ANA study)
Fraud in Digital Advertising (ANA study)Margarita Zlatkova
 
Ias guide ad fraud essentials_2017 (1)
Ias guide ad fraud essentials_2017 (1)Ias guide ad fraud essentials_2017 (1)
Ias guide ad fraud essentials_2017 (1)Wossname
 
IAB Best Practices Traffic Fraud Final
IAB Best Practices Traffic Fraud FinalIAB Best Practices Traffic Fraud Final
IAB Best Practices Traffic Fraud FinalDr. Augustine Fou - Independent Ad Fraud Researcher
 
2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad Bots
2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad Bots2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad Bots
2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad BotsDistil Networks
 

Recommended

Bot Benchmark study - White Ops & DCN
Bot Benchmark study - White Ops & DCNBot Benchmark study - White Ops & DCN
Bot Benchmark study - White Ops & DCNWhite Ops
 
White Ops & Videology Whitepaper
White Ops & Videology WhitepaperWhite Ops & Videology Whitepaper
White Ops & Videology WhitepaperWhite Ops
 
2015 Bot Baseline Report - White Ops & ANA
2015 Bot Baseline Report - White Ops & ANA2015 Bot Baseline Report - White Ops & ANA
2015 Bot Baseline Report - White Ops & ANAWhite Ops
 
Field Guide for Validating Premium Ad Inventory
Field Guide for Validating Premium Ad InventoryField Guide for Validating Premium Ad Inventory
Field Guide for Validating Premium Ad InventoryDistil Networks
 
Fraud in Digital Advertising (ANA study)
Fraud in Digital Advertising (ANA study)Fraud in Digital Advertising (ANA study)
Fraud in Digital Advertising (ANA study)Margarita Zlatkova
 
Ias guide ad fraud essentials_2017 (1)
Ias guide ad fraud essentials_2017 (1)Ias guide ad fraud essentials_2017 (1)
Ias guide ad fraud essentials_2017 (1)Wossname
 
IAB Best Practices Traffic Fraud Final
IAB Best Practices Traffic Fraud FinalIAB Best Practices Traffic Fraud Final
IAB Best Practices Traffic Fraud FinalDr. Augustine Fou - Independent Ad Fraud Researcher
 
2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad Bots
2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad Bots2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad Bots
2016 Bad Bot Report: Quantifying the Risk and Economic Impact of Bad BotsDistil Networks
 
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...Distil Networks
 
ComplianceBrief
ComplianceBriefComplianceBrief
ComplianceBriefDaryl McNutt
 
Better Metrics, Less Hacks: Online Travel and The Future of Web Security
Better Metrics, Less Hacks: Online Travel and The Future of Web SecurityBetter Metrics, Less Hacks: Online Travel and The Future of Web Security
Better Metrics, Less Hacks: Online Travel and The Future of Web SecurityDistil Networks
 
Trademob whitepaper click-fraud
Trademob whitepaper click-fraudTrademob whitepaper click-fraud
Trademob whitepaper click-fraudDenis Verloes
 
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...G3 Communications
 
Tackling ad fraud in 2016
Tackling ad fraud in 2016Tackling ad fraud in 2016
Tackling ad fraud in 20169Media Online
 
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015Raffaella Natale
 
Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...
Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...
Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...Dr. Augustine Fou - Independent Ad Fraud Researcher
 
Botnets used for ad fraud spam ddos attacks
Botnets used for ad fraud spam ddos attacksBotnets used for ad fraud spam ddos attacks
Botnets used for ad fraud spam ddos attacksDr. Augustine Fou - Independent Ad Fraud Researcher
 
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website DefendersDistil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website DefendersDistil Networks
 
Not dirty LITTLE secret but Elephant in the Room
Not dirty LITTLE secret but Elephant in the RoomNot dirty LITTLE secret but Elephant in the Room
Not dirty LITTLE secret but Elephant in the RoomDr. Augustine Fou - Independent Ad Fraud Researcher
 
Ad fraud is cash out for hacking
Ad fraud is cash out for hackingAd fraud is cash out for hacking
Ad fraud is cash out for hackingDr. Augustine Fou - Independent Ad Fraud Researcher
 
Ground Truth real safari vs fake safari
Ground Truth real safari vs fake safariGround Truth real safari vs fake safari
Ground Truth real safari vs fake safariDr. Augustine Fou - Independent Ad Fraud Researcher
 
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...Forter
 
Forter - NOAH19 Tel Aviv
Forter - NOAH19 Tel AvivForter - NOAH19 Tel Aviv
Forter - NOAH19 Tel AvivNOAH Advisors
 
The Wrong Impression | Adfraud
The Wrong Impression | AdfraudThe Wrong Impression | Adfraud
The Wrong Impression | AdfraudAditya Labhe
 
Digital ad fraud impact on class action notice industry
Digital ad fraud impact on class action notice industryDigital ad fraud impact on class action notice industry
Digital ad fraud impact on class action notice industryDr. Augustine Fou - Independent Ad Fraud Researcher
 
Digital Ad Fraud Briefing by Augustine Fou 1H 2014
Digital Ad Fraud Briefing by Augustine Fou 1H 2014Digital Ad Fraud Briefing by Augustine Fou 1H 2014
Digital Ad Fraud Briefing by Augustine Fou 1H 2014Dr. Augustine Fou - Independent Ad Fraud Researcher
 
3Ton30: The Many Faces of Ad Fraud
3Ton30: The Many Faces of Ad Fraud3Ton30: The Many Faces of Ad Fraud
3Ton30: The Many Faces of Ad FraudCentro
 
Fraudulent Internet Yellow Pages Traffic
Fraudulent Internet Yellow Pages TrafficFraudulent Internet Yellow Pages Traffic
Fraudulent Internet Yellow Pages TrafficRamon Cartwright
 
Ad fraud & Programmatic
Ad fraud & ProgrammaticAd fraud & Programmatic
Ad fraud & ProgrammaticNeeraj Mishra
 
Digital Ad Fraud - Betcha Didn't Know
Digital Ad Fraud - Betcha Didn't KnowDigital Ad Fraud - Betcha Didn't Know
Digital Ad Fraud - Betcha Didn't KnowDr. Augustine Fou - Independent Ad Fraud Researcher
 

More Related Content

What's hot

Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...Distil Networks
 
Better Metrics, Less Hacks: Online Travel and The Future of Web Security
Better Metrics, Less Hacks: Online Travel and The Future of Web SecurityBetter Metrics, Less Hacks: Online Travel and The Future of Web Security
Better Metrics, Less Hacks: Online Travel and The Future of Web SecurityDistil Networks
 
Trademob whitepaper click-fraud
Trademob whitepaper click-fraudTrademob whitepaper click-fraud
Trademob whitepaper click-fraudDenis Verloes
 
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...G3 Communications
 
Tackling ad fraud in 2016
Tackling ad fraud in 2016Tackling ad fraud in 2016
Tackling ad fraud in 20169Media Online
 
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015Raffaella Natale
 
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website DefendersDistil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website DefendersDistil Networks
 
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...Forter
 
Forter - NOAH19 Tel Aviv
Forter - NOAH19 Tel AvivForter - NOAH19 Tel Aviv
Forter - NOAH19 Tel AvivNOAH Advisors
 
The Wrong Impression | Adfraud
The Wrong Impression | AdfraudThe Wrong Impression | Adfraud
The Wrong Impression | AdfraudAditya Labhe
 

What's hot (18)

Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
Field Guide To Preventing Competitor Price Scraping, Unwanted Transactions, B...
 
ComplianceBrief
ComplianceBriefComplianceBrief
ComplianceBrief
 
Better Metrics, Less Hacks: Online Travel and The Future of Web Security
Better Metrics, Less Hacks: Online Travel and The Future of Web SecurityBetter Metrics, Less Hacks: Online Travel and The Future of Web Security
Better Metrics, Less Hacks: Online Travel and The Future of Web Security
 
Trademob whitepaper click-fraud
Trademob whitepaper click-fraudTrademob whitepaper click-fraud
Trademob whitepaper click-fraud
 
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
StubHub's Field Guide To Preventing Competitor Price Scraping, Unwanted Trans...
 
Tackling ad fraud in 2016
Tackling ad fraud in 2016Tackling ad fraud in 2016
Tackling ad fraud in 2016
 
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
Revenue sources-for-copyright-infringing-sites-in-eu-march-2015
 
Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...
Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...
Ways To Think About Solving Digital Ad Fraud Augustine Fou Mike Moran Ted McC...
 
Botnets used for ad fraud spam ddos attacks
Botnets used for ad fraud spam ddos attacksBotnets used for ad fraud spam ddos attacks
Botnets used for ad fraud spam ddos attacks
 
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website DefendersDistil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
Distil Networks 2017 Bad Bot Report: 6 High Risk Lessons for Website Defenders
 
Not dirty LITTLE secret but Elephant in the Room
Not dirty LITTLE secret but Elephant in the RoomNot dirty LITTLE secret but Elephant in the Room
Not dirty LITTLE secret but Elephant in the Room
 
Ad fraud is cash out for hacking
Ad fraud is cash out for hackingAd fraud is cash out for hacking
Ad fraud is cash out for hacking
 
Ground Truth real safari vs fake safari
Ground Truth real safari vs fake safariGround Truth real safari vs fake safari
Ground Truth real safari vs fake safari
 
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
Know Your Fraudster: Leveraging everything you've got to prepare for post-EMV...
 
Forter - NOAH19 Tel Aviv
Forter - NOAH19 Tel AvivForter - NOAH19 Tel Aviv
Forter - NOAH19 Tel Aviv
 
The Wrong Impression | Adfraud
The Wrong Impression | AdfraudThe Wrong Impression | Adfraud
The Wrong Impression | Adfraud
 
Digital ad fraud impact on class action notice industry
Digital ad fraud impact on class action notice industryDigital ad fraud impact on class action notice industry
Digital ad fraud impact on class action notice industry
 
Digital Ad Fraud Briefing by Augustine Fou 1H 2014
Digital Ad Fraud Briefing by Augustine Fou 1H 2014Digital Ad Fraud Briefing by Augustine Fou 1H 2014
Digital Ad Fraud Briefing by Augustine Fou 1H 2014
 

Similar to The Many Faces of Ad Fraud

3Ton30: The Many Faces of Ad Fraud
3Ton30: The Many Faces of Ad Fraud3Ton30: The Many Faces of Ad Fraud
3Ton30: The Many Faces of Ad FraudCentro
 
Fraudulent Internet Yellow Pages Traffic
Fraudulent Internet Yellow Pages TrafficFraudulent Internet Yellow Pages Traffic
Fraudulent Internet Yellow Pages TrafficRamon Cartwright
 
Ad fraud & Programmatic
Ad fraud & ProgrammaticAd fraud & Programmatic
Ad fraud & ProgrammaticNeeraj Mishra
 
DEFCON 23 - Mark Ryan Talabis - The Bieber Project
DEFCON 23 - Mark Ryan Talabis - The Bieber ProjectDEFCON 23 - Mark Ryan Talabis - The Bieber Project
DEFCON 23 - Mark Ryan Talabis - The Bieber ProjectFelipe Prado
 
Fraud in digital advertising botnet baseline summery ziv ginsberg
Fraud in digital advertising botnet baseline summery ziv ginsbergFraud in digital advertising botnet baseline summery ziv ginsberg
Fraud in digital advertising botnet baseline summery ziv ginsbergZiv Ginsberg
 
Mystery Shopping Inside the Ad-Verification Bubble
Mystery Shopping Inside the Ad-Verification BubbleMystery Shopping Inside the Ad-Verification Bubble
Mystery Shopping Inside the Ad-Verification BubbleShailin Dhar
 
Ana White OPS - the bot baseline - fraud in digital advertising - 2015
Ana White OPS - the bot baseline - fraud in digital advertising - 2015Ana White OPS - the bot baseline - fraud in digital advertising - 2015
Ana White OPS - the bot baseline - fraud in digital advertising - 2015Romain Fonnier
 
The Bot Baseline - Fraud in Digital Advertising
The Bot Baseline - Fraud in Digital AdvertisingThe Bot Baseline - Fraud in Digital Advertising
The Bot Baseline - Fraud in Digital Advertisingyann le gigan
 
Rtp rsp16-distil networks-final-deck
Rtp rsp16-distil networks-final-deckRtp rsp16-distil networks-final-deck
Rtp rsp16-distil networks-final-deckG3 Communications
 
Conclusion - How To Write An Essay - LibGuides At Univers
Conclusion - How To Write An Essay - LibGuides At UniversConclusion - How To Write An Essay - LibGuides At Univers
Conclusion - How To Write An Essay - LibGuides At UniversSusan White
 
Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.
Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.
Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.Alex S. Berryhill
 
Are Bot Operators Eating Your Lunch?
Are Bot Operators Eating Your Lunch?Are Bot Operators Eating Your Lunch?
Are Bot Operators Eating Your Lunch?Distil Networks
 
Bot detection deck 042514 final
Bot detection deck 042514 finalBot detection deck 042514 final
Bot detection deck 042514 finalVindicoGroup
 
Conversational Commerce & Chatbots
Conversational Commerce & ChatbotsConversational Commerce & Chatbots
Conversational Commerce & ChatbotsAnn Stanley
 
How To Write A Thematic Essay - Structure And Examples - Peac
How To Write A Thematic Essay - Structure And Examples - PeacHow To Write A Thematic Essay - Structure And Examples - Peac
How To Write A Thematic Essay - Structure And Examples - PeacJennifer Thomas
 
High School Life Vs. College Life Compare And Contra
High School Life Vs. College Life Compare And ContraHigh School Life Vs. College Life Compare And Contra
High School Life Vs. College Life Compare And ContraErika Nelson
 
Lunar Strategy - Crypto Guide 2022
Lunar Strategy - Crypto Guide 2022Lunar Strategy - Crypto Guide 2022
Lunar Strategy - Crypto Guide 2022Harsha MV
 

Similar to The Many Faces of Ad Fraud (20)

3Ton30: The Many Faces of Ad Fraud
3Ton30: The Many Faces of Ad Fraud3Ton30: The Many Faces of Ad Fraud
3Ton30: The Many Faces of Ad Fraud
 
Fraudulent Internet Yellow Pages Traffic
Fraudulent Internet Yellow Pages TrafficFraudulent Internet Yellow Pages Traffic
Fraudulent Internet Yellow Pages Traffic
 
Ad fraud & Programmatic
Ad fraud & ProgrammaticAd fraud & Programmatic
Ad fraud & Programmatic
 
Digital Ad Fraud - Betcha Didn't Know
Digital Ad Fraud - Betcha Didn't KnowDigital Ad Fraud - Betcha Didn't Know
Digital Ad Fraud - Betcha Didn't Know
 
DEFCON 23 - Mark Ryan Talabis - The Bieber Project
DEFCON 23 - Mark Ryan Talabis - The Bieber ProjectDEFCON 23 - Mark Ryan Talabis - The Bieber Project
DEFCON 23 - Mark Ryan Talabis - The Bieber Project
 
Fraud in digital advertising botnet baseline summery ziv ginsberg
Fraud in digital advertising botnet baseline summery ziv ginsbergFraud in digital advertising botnet baseline summery ziv ginsberg
Fraud in digital advertising botnet baseline summery ziv ginsberg
 
Mystery Shopping Inside the Ad-Verification Bubble
Mystery Shopping Inside the Ad-Verification BubbleMystery Shopping Inside the Ad-Verification Bubble
Mystery Shopping Inside the Ad-Verification Bubble
 
Ana White OPS - the bot baseline - fraud in digital advertising - 2015
Ana White OPS - the bot baseline - fraud in digital advertising - 2015Ana White OPS - the bot baseline - fraud in digital advertising - 2015
Ana White OPS - the bot baseline - fraud in digital advertising - 2015
 
The Bot Baseline - Fraud in Digital Advertising
The Bot Baseline - Fraud in Digital AdvertisingThe Bot Baseline - Fraud in Digital Advertising
The Bot Baseline - Fraud in Digital Advertising
 
Rtp rsp16-distil networks-final-deck
Rtp rsp16-distil networks-final-deckRtp rsp16-distil networks-final-deck
Rtp rsp16-distil networks-final-deck
 
Conclusion - How To Write An Essay - LibGuides At Univers
Conclusion - How To Write An Essay - LibGuides At UniversConclusion - How To Write An Essay - LibGuides At Univers
Conclusion - How To Write An Essay - LibGuides At Univers
 
Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.
Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.
Social A.I. that funds humanity. SMRC/Conscience Pitch Deck.
 
Are Bot Operators Eating Your Lunch?
Are Bot Operators Eating Your Lunch?Are Bot Operators Eating Your Lunch?
Are Bot Operators Eating Your Lunch?
 
History and Impact of Digital Ad Fraud
History and Impact of Digital Ad FraudHistory and Impact of Digital Ad Fraud
History and Impact of Digital Ad Fraud
 
Bot detection deck 042514 final
Bot detection deck 042514 finalBot detection deck 042514 final
Bot detection deck 042514 final
 
State of digital ad fraud 2017 by augustine fou
State of digital ad fraud 2017 by augustine fouState of digital ad fraud 2017 by augustine fou
State of digital ad fraud 2017 by augustine fou
 
Conversational Commerce & Chatbots
Conversational Commerce & ChatbotsConversational Commerce & Chatbots
Conversational Commerce & Chatbots
 
How To Write A Thematic Essay - Structure And Examples - Peac
How To Write A Thematic Essay - Structure And Examples - PeacHow To Write A Thematic Essay - Structure And Examples - Peac
How To Write A Thematic Essay - Structure And Examples - Peac
 
High School Life Vs. College Life Compare And Contra
High School Life Vs. College Life Compare And ContraHigh School Life Vs. College Life Compare And Contra
High School Life Vs. College Life Compare And Contra
 
Lunar Strategy - Crypto Guide 2022
Lunar Strategy - Crypto Guide 2022Lunar Strategy - Crypto Guide 2022
Lunar Strategy - Crypto Guide 2022
 

Recently uploaded

Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024BookNet Canada
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersThousandEyes
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphNeo4j
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhisoniya singh
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machinePadma Pradeep
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 

Recently uploaded (20)

Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
#StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for PartnersEnhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | DelhiFULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
FULL ENJOY 🔝 8264348440 🔝 Call Girls in Diplomatic Enclave | Delhi
 
Install Stable Diffusion in windows machine
Install Stable Diffusion in windows machineInstall Stable Diffusion in windows machine
Install Stable Diffusion in windows machine
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 

The Many Faces of Ad Fraud

  • 1. #NoMoreAdFraud Brandon Miller, Carmichael Lynch Michael Tiffany, White Ops The Problem The Criminals The Solution The Bot World
  • 2. The Problem The Criminals The Solution The Bot World
  • 3. In 2014, The Bot Baseline found fraud in every kind of campaign we studied. The average loss to bots was 11%.
  • 4. Bots are infecting the system. Fake web browsers go to real (or fake) sites, view real ads, and demand payment for the service
  • 5. How big is the problem?
  • 8. …it’s worse than this. $6.3 billion is a conservative estimate, but that’s more than bad enough.
  • 10. It’s coming from inside the house
  • 11. Why you care: Your money gets home users hacked. You are being tricked into tracking bots. 1 2
  • 12. Why hack home users? Hint: not to rob their digital funds and identities (not that they don’t)
  • 13. If you want to get targeted, you (often) need a consumer’s identity. That can be arranged.
  • 14. False assumptions: Bots are afraid of tracking (nope: hacked goods make them seem legitimate) Optimizing for performance, or viewability, or conversions squeezes out the bots automatically (nope) x x …our findings show otherwise.
  • 15. Bot fraud is the scalable ad fraud Yes, you should probably care about pixel stuffing, ad clutter, ad collision, etc. etc. etc. But those things don’t happen on expensive placements. Those things don’t add up to $6.3 billion dollars. Those things don’t funnel money to organized crime. Your CFO cares about stopping money going to organized crime. He may not care about ad clutter.
  • 16. The Problem The Criminals The Solution The Bot World
  • 17. Ad fraud is not evenly distributed (Neither is tuberculosis)
  • 18. Video is (on average): 2.1 times bottier than display
  • 19. Almost a quarter of video advertisement goes to nobody
  • 21. Programmatic (buy at your own risk) X X33% Bots 3% Bots Exchange 1 Exchange 2
  • 22. News Junkie Targeting (and Retargeting) Missed. Fake profiles and stolen cookies = retargeted campaigns had more bots, not less
  • 23. Premium sites are “safer” but…
  • 24. When publishers get a portion of their visitors from other sites on the web, they get bot traffic, too.
  • 25. The Problem The Criminals The Solution The Bot World $
  • 27. Advertiser Agency Exchanges Publisher Who’s the bad guy? The real bad guys are the ones breaking into everyone’s computers
  • 28. How do the bad guys make money?
  • 30. …with fake sites. …when real sites need more traffic. &
  • 31. Fake Sites  Awful content  Scraped or copied content  Objectively measurable  Hosts ads  Makes money Doesn’t matter; humans don’t visit
  • 32. Sourced Traffic $ One site paying another to send more traffic
  • 33. Sourced Traffic $ Sourced traffic is usually botty traffic (even for premium sites) especially
  • 34.
  • 35. The attackers adapt Here they come. Turn the bots off! They’re leaving. Turn the bots back on. We have a complaint. Clean it up. Here they come again…
  • 36. There are some interesting patterns… When advertisers demand more traffic, the differential between available humans and advertiser demand for traffic can be made up with bots. Bots will often supply traffic as needed in bursts – in this case, every Saturday
  • 37. There are some interesting patterns… Not all botnets are run by geniuses: some bots are too dumb to keep daylight hours:
  • 38. Old Browsers Are Bot Browsers Bots both: Cycle through many fake user-agents (browsers) to hide in the noise Provide real user- agents, but don’t get auto-updated Why are we still supporting old browsers?!
  • 39. But patterns are not evidence.
  • 40. • Taking on all the botnets at once requires hardcore malware reverse-engineering and major intelligence operations. • We’re in an arms race against the world’s best cybercriminals. • It’s fun to point out these patterns, but if all we had to do was find the patterns, this problem would have been solved already.
  • 41. The Problem The Criminals The Victims The Solution
  • 42. We all need to work together to solve the problem of ad fraud.
  • 43. On the Sell Side, real can’t compete with fake If the Buy Side can’t tell the difference
  • 44. In December 2014, on behalf of a large brand, the ad agency Carmichael Lynch decided to make an above-average campaign even better.
  • 45.
  • 46. Carmichael Lynch’s Anti-Fraud Formula:  Monitor for fraud in all the brand’s campaigns  Use continuous monitoring (Detection) to hold all supply partners accountable and to reward great ones  Take proactive steps (Prevention) only where it makes sense for the buyer to take that burden
  • 47.
  • 48. 1. Top volume campaigns had expensive bot problems Top bot problems:
  • 49. Solution: Protect high value media investment – reduce fraud where it hits the hardest by dollars Campaign Human Bots Bots % 1* 350M 20M 5% 2* 260M 20M 7% 3* 190M 14M 7% 4 76M 3M 4% 5* 63M 10M 13%
  • 50. 1. Top volume campaigns had expensive bot problems 2. Small but significant bot percentages across too many placements to address manually Top bot problems:
  • 51. Solution: Anti-targeting! 5.90% 7.80% 6.70% 3.80% 3.40% 2/22, 13 MM 2/23, 15 MM 2/24, 16 MM 2/25, 14 MM 2/26, 13 MM Bot % of total
  • 52. Solution: Anti-targeting! In one day, Carmichael Lynch cut the brand’s bot percentage by 43%. 5.90% 7.80% 6.70% 3.80% 3.40% 2/22, 13 MM 2/23, 15 MM 2/24, 16 MM 2/25, 14 MM 2/26, 13 MM Bot % of total
  • 53. 1. Top volume campaigns had expensive bot problems 2. Small but significant bot percentages across too many placements to address manually 3. Bot fraud varied by placement by time: being clean today didn’t guarantee being clean tomorrow Top bot problems:
  • 54. In ongoing fraud-cutting activities, Carmichael Lynch improved traffic by cutting or repairing the worst offenders Solution: Continuous monitoring
  • 55. Authorize and approve third-party traffic validation technology Be aware and involved Use third-party monitoring Budget for security Protect yourself, your users, and your media from ad fraud ✓ ✓ ✓ ✓ ✓ To defend against sophisticated and basic ad fraud attacks,

Editor's Notes

  1. Very effective, clearly very profitable “Playing with fire” (but not always burning)
  2. They’re called bots, they’ve always been something of a problem, they’ve become something more: Fake web browsers, going to real (or fake) sites, “viewing” real advertisements and demanding payment for the service
  3. It’s worse than this. We are highly conservative scientist hackers The $6.3B we’re asserting is based on the smokiest of guns That’s OK. $6.3B in yearly losses is bad enough even as an understatement What’s more significant is Who Where
  4. We are highly conservative scientist hackers The $6.3B we’re asserting is based on the smokiest of guns That’s OK. $6.3B in yearly losses is bad enough even as an understatement
  5. What’s more significant is Who Where
  6. 1) This is not a victimless crime Criminal networks are being paid to hack home users…with your money Why home users? Besides the fact that, as long as you’re there, might as well look around for $$$ 2) Targeting is getting hacked too They hack home users because ads don’t target Amazon EC2 It’s not just about the IPs – when you hack a machine, you get its cookies Intel: When we see sites that exist purely to host advertisements to bots, they sign up for every tracking scheme they can The worst bot sites run 4x tracking of legitimate/popular sites They’re not afraid of tracking – they have the goods from the legitimate user Many significant systems think they’re safe because they assume bots lack magic cookies The data does not support that.
  7. Why home users? Besides the fact that, as long as you’re there, might as well look around for $$$
  8. 2) Targeting is getting hacked too They hack home users because ads don’t target Amazon EC2 It’s not just about the IPs – when you hack a machine, you get its cookies Intel: When we see sites that exist purely to host advertisements to bots, they sign up for every tracking scheme they can The worst bot sites run 4x tracking of legitimate/popular sites They’re not afraid of tracking – they have the goods from the legitimate user Many significant systems think they’re safe because they assume bots lack magic cookies The data does not support that.
  9. Fraud is not evenly distributed. Neither is tuberculosis. Video is (on average) almost 2.5x as botty as display Almost a quarter of video advertisement went to nobody Programmatic is 50% bottier, retargeting is 75% bottier than average “Premium sites” are safer – only 25% of fraud lived on them – but bots make their way to them too Huge variance in bottiness according to domain categories Finance/Family/Food: 16-22% Sport/Science/Info: 2-3%
  10. Video is (on average) almost 2.5x as botty as display
  11. Almost a quarter of video advertisement went to nobody
  12. Programmatic is 50% bottier, retargeting is 75% bottier than average
  13. Programmatic buys can be OK, but are often risky One of the largest exchanges consistently yielded about 33% bots We did see programmatic buys sometimes down at the 3% bot level, though, so it’s not universally bad DSPs allow some really crazy stunts One publisher funneled over 90% bot traffic through DSPs to half of study participants Remember, we also have a selection bias in that our 36 participants are some of the largest advertisers in the world Their ads were still showing up on sites no human would ever visit or appreciate Very effective, clearly very profitable “Playing with fire” (but not always burning)
  14. You can’t just target users, let alone “retarget” them “Oh, I know you’re somebody who browses CNN, I’ll advertise on fakesite” Almost twice as many bots when retargeting One case study: 17% bot on overall traffic, 55% bot on the retargeted campaign Remember, these are where we’re seeing smoking guns, and the numbers are still severe.
  15. “Premium sites” are safer – only 25% of fraud lived on them – but bots make their way to them too
  16. We are able to detect traffic sourcing – when a site pays another site to “send it traffic” The majority of sourced traffic that we witnessed was obviously botty, even/especially for premium publishers Actually our single strongest predictor of bottiness One direct buy, premium set of 60 campaigns was “shuffled”: 30 highly human placements 30 highly botty placements, varying between 16% and 64% bot Active campaign to “play the game of averages” (17% bot total) One direct video buy at an unambiguously premium publisher yielded 98% bottiness How does this happens? 1) There was money on the table 2) They didn’t think they’d get caught
  17. The bad guy is not the advertiser, the agency, the exchanges, or the publishers (usually) The bad guy is the hacker. Everybody needs to work together to trace where the hacker is.
  18. Surprisingly, the most common question: “How do the bad guys make money?” 1) Fake sites 2) Real sites that need a little more traffic Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue 75% of bot traffic went to non-premium, mostly fake sites Definitely a dominant paradigm… …but does this mean the real sites are cleaner? …are there real sites?
  19. Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue
  20. We are able to detect traffic sourcing – when a site pays another site to “send it traffic” The majority of sourced traffic that we witnessed was obviously botty, even/especially for premium publishers Actually our single strongest predictor of bottiness
  21. 75% of bot traffic went to non-premium, mostly fake sites
  22. Difficulties: It’s a huge ecosystem, and everyone profits from bigger numbers but you
  23. They knew we were coming, and turned off the bots They thought we were leaving, and turned the bots back on We lied about when we were coming and going We get to do that We watched ‘em come and go (For one particular study participant) Also watched significant adaptation to complaints If we called out an ad flow as botty, suddenly it’d be less botty Somebody knows
  24. Annoying, we sure spend a lot to make sure we’re compatible with old browsers… Bots either: A) Fake their user-agent to be some old/random value, so they can’t easily be identified B) Don’t fake their user-agent, but also don’t get autoupdated by OS/real user browser
  25. Surprisingly, the most common question: “How do the bad guys make money?” 1) Fake sites 2) Real sites that need a little more traffic Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue 75% of bot traffic went to non-premium, mostly fake sites Definitely a dominant paradigm… …but does this mean the real sites are cleaner? …are there real sites?
  26. Surprisingly, the most common question: “How do the bad guys make money?” 1) Fake sites 2) Real sites that need a little more traffic Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue 75% of bot traffic went to non-premium, mostly fake sites Definitely a dominant paradigm… …but does this mean the real sites are cleaner? …are there real sites?
  27. Surprisingly, the most common question: “How do the bad guys make money?” 1) Fake sites 2) Real sites that need a little more traffic Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue 75% of bot traffic went to non-premium, mostly fake sites Definitely a dominant paradigm… …but does this mean the real sites are cleaner? …are there real sites?
  28. Surprisingly, the most common question: “How do the bad guys make money?” 1) Fake sites 2) Real sites that need a little more traffic Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue 75% of bot traffic went to non-premium, mostly fake sites Definitely a dominant paradigm… …but does this mean the real sites are cleaner? …are there real sites?
  29. Surprisingly, the most common question: “How do the bad guys make money?” 1) Fake sites 2) Real sites that need a little more traffic Fake sites Objectively and measurably awful content Scraped or copied from other sites wholesale Doesn’t matter, nobody human goes there anyway Sites host ads, ads generate revenue 75% of bot traffic went to non-premium, mostly fake sites Definitely a dominant paradigm… …but does this mean the real sites are cleaner? …are there real sites?
  30. One direct video buy at an unambiguously premium publisher yielded 98% bottiness How does this happen? 1) There was money on the table 2) They didn’t think they’d get caught