Welcome to WebmasterWorld Guest from 184.108.40.206
Forum Moderators: open
The bane of online advertisers is click fraud, in which people or computers click on ads solely to generate a payment.
And just as spammers have adapted to evade detection, the people who commit click fraud are adopting increasingly sophisticated techniques, according to Click Forensics, a firm that analyzes traffic on behalf of advertisers and ad networks.
In particular, Click Forensics recently found a more-than-twofold increase over the last year in the percentage of click fraud that originates from botnets — vast networks of unwittingly compromised computers, most commonly associated with spam. The computers are yoked together and then used to commit Internet crimes.
Report: Botnets Increasingly Used In Click Fraud [nytimes.com]
These things come in waves. We let our guard down for a second and here it comes.
Just look at the not so respected webmaster sites. People are paying people for this stuff and its a HUGE market. Seems like Google could have 1 or 2 staff employees track this on these sites but they don't care as long as they can catch some of it "Algorithmically"
I have parked domains. Every now and then, I'll see a weird stat like 1 visit with 65 clicks. Or else I'll see 2 clicks ea for 50 or 60 domains, in exact alphabetical order. It's fairly clear nobody typed these in, so it was probably a bot of some sort. Generally the parking company will remove the clicks when this happens, but say they didn't, and I got paid for it. Plus the parking company gets whatever their cut is. Plus the ad provider (Google or Yahoo) gets their cut. What do the people who unleash the bots get? Seems too widespread and too much money involved to just be mischief.
Why the bot would click a few dozen times on your parked domain is hard to explain. Sounds like a test process or a malfunction. Presumably, a competent click bot doesn't click a gazillion times on one visit, as the whole thing will likely get thrown out.
It could also be some kind of spidering program trying to follow every link, even to the point of loading script content.
Likewise, if other means of click fraud were now being more accurately stopped, it would also skew the percentage of botnet click fraud vs. other methods.
More importantly, if you know it's botnet click fraud, was the click fraud amount refunded to the advertisers?
Sadly, the article is completely lacking and gives no information to qualify their premise or provide other important details.
The botnet operator won't get to see the percentage of clicks that get paid on those accounts but may be able to gather valuable info when AdSense/YPN code is removed.
Click fraud detection enters a whole new level of difficulty when you take these things into account:
1. Let's say it's a 10,000+ machine botnet
2. Most machines have real, unwitting, owners who do searches
3. Those searches can be captured
4. Web surfing habits can be captured
5. Information can be exchanged with central (dynamically changing) botnet command machines
6. Command machines would be able to work out suitable fraudulent browsing/click patterns from gathered data from all machines. Such patterns could be personalised for the behaviour of the owner ofeach comprimised machine.
7. Only a small percentage of those clicks need to be directed to the botnet owned sites
8. These clicks can also be spread over several ad systems/networks (AdSense, YPN, Parking, 'Networks'...)
The possibilities are endless and point to a future filled with collateral damage for innocent publishers. It's not easy to fix, plus it's a moving target - there's a whole lot of pain to come I fear.
I've seen some super strange numbers from time to time as well, but recently I've seen more and more single click stats not getting paid out. Previously good domains that always had legit traffic now seem to pay, in some cases, only half the time. I think this is the year I let my "domain experiment" die.
Use of a computer to commit this type of Internet fraud is a felony in many jurisdictions, for example as covered by Penal code 502 in California, USA, and the Computer Misuse Act 1990 in the United Kingdom.
Click Forensics recently found...An opportunity to get still more free advertising.
there's a whole lot of pain to come I fear.
This isn't something new. Botnet (and all the other types of) click fraud started even before Overture launched. It has growing along with online advertising but there has been no major jump that I'm aware of.
I personally don't think G or Y really try very hard to screen out the crap traffic
It's true that Yahoo lets a lot of crap get through that they could stop if they worked at it. Google, on the other hand, does an admirable job.
Most people don't realize how prevalent click fraud is. Have Google shut off their filters and screening for a week and then claim they aren't trying very hard ;-)
And when the filters and screening fail, they have something that no botnet can cheat: ROI metrics.
People have been calling click fraud the end of the world for years now. It's not.
The problem is that too many people are too trusting of these search engines, and search engines are vulnerable to a lot of very inventive fraudsters. If every advertiser was as savvy as the average contributor to webmasterworld they would have to sharpen their act up and the bad guys would have to get even cleverer than they already are. I certainly don't think that they would give up though, fraud will be with us forever IMO.
Some PC's, broadband connections, multiple sessions, rotating browser types and rotating proxies (AOL even help by using dynamically assigned IP's), "obeying" the target site's cookie security...................