Securing Online Advertising. Benjamin Edelman

Similar documents
Rights and Responsibilities in. Benjamin Edelman Harvard Business School

Google s Profits from Unlawful Ads and Unlawful Content. Ben Edelman Associate Professor Harvard Business School

Dominance in Search: Harms and Remedies. Benjamin Edelman Harvard Business School

Advertising Network Affiliate Marketing Algorithm Analytics Auto responder autoresponder Backlinks Blog

Affiliate Program. Powered by. What you will find in this Advertiser Checklist: The Advertiser Checklist

Mobile Banking and Mobile Deposit Terms & Conditions

Privacy Policy for the Lipotype Platform

Flash Ads. Tracking Clicks with Flash Clicks using the ClickTAG

LightGig Communications, LLC Privacy Policy

FREQUENTLY ASKED QUESTIONS

WEBSITE PRIVACY POLICY

Secret CPA Superhero

PSS Affiliate Agreement

Pay-Per-Click Advertising Special Report

The Travel Tree Terms and Conditions

VIEWING AND/OR USE AND/OR COMMUNICATION IS CONSTRUED AS ACCEPTANCE OF THE TERMS OF THIS POLICY

Website privacy policy

AhnLab Software License Agreement

We will ask you for certain kinds of personal information ( Personal Information ) to provide the services you request. This information includes:

Terms and Conditions For Online-Payments

Terms and Conditions - Dedicated Internet Access Service

Weebly API Terms of Use

FREQUENTLY ASKED QUESTIONS

OVO Energy Affiliate Program Terms & Conditions

p. 2 Copyright Notice Legal Notice All rights reserved. You may NOT distribute or sell this report or modify it in any way.

SIMPLEFX AFFILIATION AGREEMENT

Digital Marketing Overview of Digital Marketing Website Creation Search Engine Optimization What is Google Page Rank?

Overture Advertiser Workbook. Chapter 4: Tracking Your Results

Acceptance. Changes to this Policy

Last Updated: January 31, 2017

MAXLIFE SUPERFOODS The participant is solely responsible to report the paid commission to its taxation authorities as required by law.

Digital Marketing. Introduction of Marketing. Introductions

CERTIFIED MAIL LABELS TERMS OF USE and PRIVACY POLICY Agreement

Campaign Element Element Features Quantity Element Frequency

SME Developing and managing your online presence. Presented by: Rasheed Girvan Global Directories

Adobe Fonts Service Additional Terms. Last updated October 15, Replaces all prior versions.

PRODUCT DISCLOSURE SHEET

Managing Your Affiliates and Partners in the Financial Industry

Affiliate Terms of Service

PRIVACY POLICY TABLE OF CONTENTS. Last updated October 05, 2018

Healthfirst Website Privacy Policy

HPE Education Services ESE (East and South Europe) Terms and Conditions

The Ultimate Digital Marketing Glossary (A-Z) what does it all mean? A-Z of Digital Marketing Translation

Governance, Risk, and Compliance Controls Suite. Release Notes. Software Version

Getting Started Guide

Holiday Autos Affiliate Program Terms & Conditions

Page 1 of Matthews Mint Hill Road, Suite C; Matthews, NC Phone Fax

TechTarget, Inc. Privacy Policy

PRIVACY POLICY Let us summarize this for you...

End User License Agreement

The data controller is MKCM Software, LLC, contact

PLAINSCAPITAL BANK SAMSUNG PAY TERMS AND CONDITIONS - PERSONAL

GROUPON VOUCHER TERMS OF SALE UK

TaxiMe Privacy Policy for Passengers

Spree Privacy Policy

WEB ANALYTICS. An Overview

Site Impact Policies for Website Use

United Vacations Thank you for visiting United Vacations web site vacations.united.com.com.

CUMBRE VISTA HOMEOWNERS ASSOCIATION, INC. RECORDS INSPECTION AND COMMUNICATIONS POLICY AND PROCEDURE. 1-Pl) ~ \ 1

PRIVACY POLICY QUICK GUIDE TO CONTENTS

Terms Of Use AGREEMENT BETWEEN USER AND DRAKE MODIFICATION OF THESE TERMS OF USE LINKS TO THIRD PARTY WEB SITES USE OF COOKIES

OHSU s Alumni Relations Program (housed at the OHSU Foundation): 1121 SW Salmon Street, Suite #100 Portland, OR

Diploma in Digital Marketing - Part I

Adaptive Strong Authenticator Configuration Guide 10g ( ) December 2007

ADVANCE DIGITAL MARKETING & SEO COURSE. Page 1 of 34 Youtube.com/ViralJadhav

TERMS & CONDITIONS. Complied with GDPR rules and regulation CONDITIONS OF USE PROPRIETARY RIGHTS AND ACCEPTABLE USE OF CONTENT

Acceptable Use Policy (AUP)

Getting Started Guide. Getting Started as a Pro Reseller

AUDIT CHECKLIST. Webby Monks

Important Information

COLLECTION OF YOUR INFORMATION We may collect information about you in a variety of ways. This information we may collect on the Site includes:

Creating Campaign Tracking URLs

ADVANCE DIGITAL MARKETING VIDEO TRAINING COURSE. Page 1 of 34 Youtube.com/ViralJadhav

COPYRIGHT & TRADEMARKS

GOOGLE LAUNCHES BETA VERSION OF BRAND NEW SEARCH CONSOLE YOUTUBE S NEW MONETIZATION POLICY, NOT A BAD DECISION

DIGITAL MARKETING TRAINING. What is marketing and digital marketing? Understanding Marketing and Digital Marketing Process?

WebReach Product Glossary

OUR CUSTOMER TERMS CLOUD SERVICES MCAFEE ENDPOINT PROTECTION ESSENTIAL FOR SMB

When we refer to Toyota, we mean Toyota Motor Sales, USA, Inc. and its affiliated entities.

1. Foot Locker UK Affiliate Program Terms & Conditions

TERMS OF SERVICE. Maui Lash Extensions All Rights Reserved.

I. INFORMATION WE COLLECT

MEASURING AND FINGERPRINTING CLICK-SPAM IN AD NETWORKS

Products: Software, content and digital materials distributed via the Vuzix App Store.

Affiliate Incentive Program Terms and Conditions. You place our affiliate links anywhere on your site as you see fit, or within non-spam s.

Clauses contain important provisions about our liability to you in relation to Royal Mail's Online Postage. Please read them carefully.

Privacy Policy. Overview:

PayThankYou LLC Privacy Policy

THE TERMS OF THIS PRIVACY & DATA USE POLICY ( POLICY ) ARE LEGALLY BINDING.

Display campaign setup guide

ADVANCE DIGITAL MARKETING VIDEO TRAINING COURSE. Page 1 of 34 Youtube.com/ViralJadhav

Website Privacy Policy

Mailbox Rental Terms and Conditions

TERMS AND CONDITIONS

Hey Guys, My name is Piyush Mathur. By Profession I am a Digital marketing consultant.

You are signing up to use the Middlesex Savings Bank Person to Person Service powered by Acculynk that allows you to send funds to another person.

Acceptable Use Policy

MASTERCARD PRICELESS SPECIALS INDIA PRIVACY POLICY

HTML5. clicktag implementation

Retail Get more out of your mobile campaigns

Transcription:

Securing Online Advertising Benjamin Edelman

Banner Ads

Banner ads gone bad

<iframe src="728x90.asp?jscode=..."> <html> <head> <meta http-equiv="refresh" content="9; url=728x90.asp?jscode=..."> <body leftmargin=0 rightmargin=0 i topmargin=0 bottommargin=0 > <p align=center valign=bottom> <SCRIPT TYPE='text/javascript' SRC='http://ad.yieldmanager.com/rmtag2.js'></S CRIPT><SCRIPT language='javascript'>var rm_host = 'http://ad.yieldmanager.com';var rm_site_id = 2578;var rm_section_code =4400;var rm_ iframe_ tags = 1;rmShowAd('728x90');</script> </p> </body> </html>

Inqwire Ad Relationships Universal Studios money traffic Traffic Marketplace money traffic Right Media money traffic Inqwire money traffic Surf Sidekick

Investigator s s tools network hub Internet t testing PC network monitor / packet sniffer monitoring PC

Feb 09

GET / HTTP/1.1 Host: www.mytoursinfo.com HTTP/1.1 200 OK <html> <script src="/js/counter.js" type="text/javascript"></script> <script src="/js/stat.js" type="text/javascript"></script> GET /js/stat.js HTTP/1.1 HTTP/1.1 200 OK document.write("<iframe width=0 height=0 src='http://www.pointtrip.com/florida_tour.html'>"); document.write( write("<iframe width=0 height=0 src='http://www http://www.fluentcall.com/pda_phones.html com/pda phones html'>"); document.write("<iframe width=0 height=0 src='http://www.webhotshop.com/shopping.htm'>"); document.write("<iframe width=0 height=0 src='http://www.freebiespack.com/freebies_insider.htm'> document.write("<iframe width=0 height=0 src='http://www.onlinemoneytrading.net/forex_trading.ht document.write("<iframe width=0 height=0 src='http://flafungame.com/top_fun_games.htm'>"); document.write("<iframe width=0 height=0 ht src='http://www.multimediasolutions.in/digital_multimed l ti i /di it l d document.write("<iframe width=0 height=0 src='http://www.bxbex.com/featured_schools/index.html'> document.write("<iframe width=0 height=0 src='http://www.ramblepace.com/denmark_travel.htm'>"); document.write("<iframe width=0 height=0 src='http://www.journeyidea.com/journey_tips.htm'>"); document.write("<iframe width=0 height=0 src='http://www.go-bay.com/search/cs_location.php'>"); document.write("<iframe width=0 height=0 src='http://www.willhealthy.com/willhealthy.htm'>"); document.write("<iframe width=0 height=0 src='http://www.fitnessan.com/bu.htm'>"); document.write("<iframe width=0 height=0 src='http://www.investdady.com/vc.htm'>"); document.write("<iframe width=0 height=0 src='http://www.9truck.com/semitrucks.htm'>"); document.write("<iframe width=0 height=0 src='http://www.healthykey.com/bacteria-improves-your-i I document.write("<iframe width=0 height=0 src='http://www.volcars.com/hybrid.htm'>"); GET /bu.htm HTTP/1.1 Host: www.fitnessan.com HTTP/1.1 200 OK <iframe width=728 height=90 src=http://www.fitnessan.com/code_728_90.htm>

Relationships advertisers Ad-Flow Burst Icon Rubiconproject Tribalfusion Vl ValueClick Clik/F FastClick Yh Yahoo /RihMdi Right Media ad networks Pointtrip Fluentcall Webhotshop Flafungame Fitnessan ad loaders money traffic Mytoursinfo traffic loader

Solutions to banner fraud Limit where ads may appear. But networks prefer not to say. Enforce IAB standards on reload frequency. Imprecise. AJAX-style apps challenge norms. Publishers can push the limits. Don t pay per impression. i

Paying per click

CPC gone wrong

Click fraud

Tracing the redirects POST /showme.aspx?keyword=%2esmartbargains%2ecom+... Host: tv.180solutions.com ad_url:... value=http://popsearch.nbcsearch.com/metricsdomains com/metricsdomains.php?search=smartbargains.com GET /metricsdomains.php?search=smartbargains.com Host: popsearch.nbcsearch.com HTTP/1.1 302 Found Location: http://ww2.ditto.com/red.php?mc=t%2fgsdhbnm%2bg2%2... / p p g GET /red.php?mc=t%2fgsdhbnm%2bg2%2b3ayiyvwsqv5crproptbkirrrz... Host: ww2.ditto.com 3 HTTP/1.1 302 Found Location: http://ww2.ditto.com/click.php?mc=t%2fgsdhbnm%2bg2... Location: http://www24.overture.com/d/sr/?xargs=15kpjg1%2dps... /d/ / 1%2 GET /d/sr/?xargs=15kpjg1%2dpsgjxyl%5frunlbxu6tfhubpycz2tpk%5... Host: www24.overture.com HTTP/1.1 302 Found Location: http://www.smartbargains.com/default.aspx?aid=47&t... 1 2 5

Syndication fraud

Ad-w-a-r-e Showing Google Ads

Ad-w-a-r-e Showing Google Ads PPC Advertisers How Upspiral gets paid for showing the ads How Upspiral gets ads onto users screens money traffic money money Google Ask Upspiral traffic traffic money traffic Looksmart money traffic Ad-w-a-r-e click fraud spyware installed without consent

Inflating CPC conversion rates

Feb 09

Feb 09

WhenU-Google Relationship Google Advertisers e.g. Verizon money traffic Google money traffic Infospace money traffic Localpages money traffic WhenU Idearc Media / Superpages

AdWords ds Terms & Conditions dto Customer understands and agrees that ads may be placed on any other content or property provided by a third party ("Partner") upon which Google places ads ("Partner Property"). Customer agrees that all placements of Customer's ads shall conclusively be deemed to have been approved by Customer unless Customer produces contemporaneous documentary evidence showing that Customer disapproved such placements in the manner specified by Google. Customer understands that third parties may generate impressions or clicks on Customer's ads for prohibited or improper purposes, and Customer accepts the risk of any such impressions and clicks. Customer's s exclusive remedy, and Google's exclusive liability, for suspected invalid impressions or clicks is for Customer to make a claim for a refund in the form of advertising i credits for Google Properties within the time period required under Section 7 below. To the fullest extent permitted by law, refunds (if any) are at the discretion of Google and only in the form of advertising credit for only Google Properties. Nothing in these Terms or an IO may obligate Google to extend credit to any party.

Protecting CPC advertisers Click-fraud detection services Contract & insertion order specificity Limit syndication and subsyndication Identify and reject improper placements Pay per conversion, not per click

Paying per conversion

Affiliate earns commission if User requests affiliate web site User clicks affiliate s link to merchant /and/ User makes a purchase Merchant can safely ypartner with anyone?

CPA / affiliate fraud

POST /showme.aspx?&sid=xehon &CD=www.blockbuster.com &keyword=%2eblockb%2aster%2ecom+%2eblockbu%2ater%2e Host: tvf.zango.com HTTP/1.1 200 OK ad_url: http://ads.roundads.com/ads/clickcash.aspx keyword=.blockbuster.com><br> GET /ads/clickcash.aspx?keyword=.blockbuster.com Host: ads.roundads.com Performics / Google Affiliate Network HTTP/1.1 301 Moved Permanently Location: http://clickserve.cc-dt.com/link/tplclick? cc com/link/tplclick? lid=41000000005307215&pubid=21000000000063579&mid= GET /link/tplclick?lid=41000000005307215&pubid=2100 Host: clickserve.cc-dt.com HTTP/1 1 302 Found HTTP/1.1 302 Found Location: https://www.blockbuster.com/signup/rp/reg

Blockbuster self-targeting adware fraud Blockbuster money traffic Performics money traffic Roundads money traffic Zango Google Affiliate Network

GET /iframe3?... Host: ad.yieldmanager.com... HTTP/1.1 200 OK Date: Mon, 29 Sep 2008 05:36:02 GMT... <iframe src="http://allebrands.com/allebrands.jpg"... GET /allebrands.jpg HTTP/1.1... Host: allebrands.com...... <a href='http://allebrands.com'> McAfee <img src='images/allebrands.jpg'></a> <iframe src ='http://click.linksynergy.com/fs-bin/ click?id=ov83t/v4fsg&offerid=144797.10000067&type=3& 10000067&type=3& Microsoft OneCare subid=0' width ='0' height = '0'> <iframe src ='http://www.microsoftaffiliates.net/t. aspx?kbid=9066&p=http%3a%2f%2fcontent.microsoftaffil iates.net%2fwltoolbar.aspx%2f&m=27&cid=8' width='0' height='0'> <iframe src ='http://send.onenetworkdirect.net/z/41/ CD98773' width ='0' height = '0'> Symantec

Affiliate earns commission if User requests affiliate web site User clicks affiliate s link to merchant /and/ User makes a purchase Visiting a web page Visiting a discussion forum Seeing a banner ad /or/ sometime after Becoming infected with spyware/adware

Guarding CPA campaigns Know your affiliates. Question your affiliate network. Hold your network accountable for its shortfalls. Do not assume perfection or infallibility.

Why advertising fraud? Strong financial incentives Pay is in USD Easy pseudonymity Limited investigations of partners Limited incentives to uncover fraud Ad agencies Ad networks Affiliate managers 10% of spend 10% of year-over-year growth Limited it actions to obtain restitution

What is being done Nothing / cost of doing business Revising Terms & Conditions rules Auditing Litigation Compare ad networks based on quality What more could be done Demand repayment. Sue. (Feasible?) Push back on ad networks one-sided T&C s. Pay more slowly penalties when caught

Takeaways Every ad metric is targeted. Paying per impression Paying per click Paying per conversion Incentives impede efforts at fraud prevention. Litigation and threatened litigation do not solve the problem. Good publishers lose when others cheat.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback