Ad-clicking bots predicted to rip US$7.2 billion from Mad Men

Could it be bots that fall for for those 'One Weird Trick' ads? Here's hoping!


Botnets will inflict a massive US$7.2 billion in damages against online advertisers this year according to research by ad security company White Ops.

Last year the industry was said to have lost US$5 billion, close to the $6.3 billion White Ops predicted in December 2014, thanks to the scourge of botnets that hugely inflate the number of online ad clicks.

The average loss was US$10 million per advertiser with the hardest-hit haemorrhaging a staggering US$42 million.

That earns scammers loads of cash and even more this year, according to the 2015 Bot Baseline: fraud in digital advertising [PDF]

The work is a joint effort with the Association of National Advertisers in which 49 ad companies tagged their online content in August through to September to allow researchers to tell how many bots were clicking ads.

Brands include Playstation, Ford, Unilever, Dell, IBM, and McDonalds among other giants. The amounts lost are not attributed to individual companies.

About nine percent were fake, the researchers say, equating to $10 million in lost revenue per advertiser.

One publisher’s impression volume rose by six percent thanks to bots.

Some advertisers stand to lose tens of millions of dollars this year if they do not move to lock out bots, the report says.

The New York company co-founded by respected security man Dan Kaminsky notes in its report that most bots fleeced programmatic advertising, with a majority hitting more lucrative programmatic video ads.

Publishers buying expensive pay-per-click traffic are the best earners for fraudsters with fresh, undetected bots, while mass clicking low-end ad-men who do next-to-nothing to purge bots are the criminal's last resort.

Advertising fraud botnets remain lucrative for longer than many criminal enterprises, provided new machines can be infected.

Chief executive officer Michael Tiffany says scammers that keep their bots fresh earn the highest revenue.

"Bot operations, then, have a profit window, a period of time from when a computer has been freshly infected until the bot is so widely detected that no one will pay for its impressions anymore," Tiffany says.

"Infections at the leading edge of the profit window, those that are fresh, affect high-CPM (cost per mile) advertising buys.

"Because most systems will not determine that the just-infected machines are now sending non-human traffic, high-CPM direct buys, programmatic private marketplace deals, and buys on top-tier platforms are all affected."

The fraud traffic while resulting from compromised computers can look almost legitimate, Kaminsky says.

"Advertising fraud has the curious status of almost seeming legitimate — you couldn’t expect to get away with raiding a bank account or accessing someone else’s Gmail account, but defrauding advertisers, even by using the host user’s identifying cookies, doesn’t seem nearly as criminal," Kaminsky says.

"While the ecosystem suffers, the end user sees very little impact from the fraud."

The impact to fraud operators is huge, however, and stands only to rise. ®


Other stories you might like

  • Cheers ransomware hits VMware ESXi systems
    Now we can say extortionware has jumped the shark

    Another ransomware strain is targeting VMware ESXi servers, which have been the focus of extortionists and other miscreants in recent months.

    ESXi, a bare-metal hypervisor used by a broad range of organizations throughout the world, has become the target of such ransomware families as LockBit, Hive, and RansomEXX. The ubiquitous use of the technology, and the size of some companies that use it has made it an efficient way for crooks to infect large numbers of virtualized systems and connected devices and equipment, according to researchers with Trend Micro.

    "ESXi is widely used in enterprise settings for server virtualization," Trend Micro noted in a write-up this week. "It is therefore a popular target for ransomware attacks … Compromising ESXi servers has been a scheme used by some notorious cybercriminal groups because it is a means to swiftly spread the ransomware to many devices."

    Continue reading
  • Twitter founder Dorsey beats hasty retweet from the board
    We'll see you around the Block

    Twitter has officially entered the post-Dorsey age: its founder and two-time CEO's board term expired Wednesday, marking the first time the social media company hasn't had him around in some capacity.

    Jack Dorsey announced his resignation as Twitter chief exec in November 2021, and passed the baton to Parag Agrawal while remaining on the board. Now that board term has ended, and Dorsey has stepped down as expected. Agrawal has taken Dorsey's board seat; Salesforce co-CEO Bret Taylor has assumed the role of Twitter's board chair. 

    In his resignation announcement, Dorsey – who co-founded and is CEO of Block (formerly Square) – said having founders leading the companies they created can be severely limiting for an organization and can serve as a single point of failure. "I believe it's critical a company can stand on its own, free of its founder's influence or direction," Dorsey said. He didn't respond to a request for further comment today. 

    Continue reading
  • Snowflake stock drops as some top customers cut usage
    You might say its valuation is melting away

    IPO darling Snowflake's share price took a beating in an already bearish market for tech stocks after filing weaker than expected financial guidance amid a slowdown in orders from some of its largest customers.

    For its first quarter of fiscal 2023, ended April 30, Snowflake's revenue grew 85 percent year-on-year to $422.4 million. The company made an operating loss of $188.8 million, albeit down from $205.6 million a year ago.

    Although surpassing revenue expectations, the cloud-based data warehousing business saw its valuation tumble 16 percent in extended trading on Wednesday. Its stock price dived from $133 apiece to $117 in after-hours trading, and today is cruising back at $127. That stumble arrived amid a general tech stock sell-off some observers said was overdue.

    Continue reading

Biting the hand that feeds IT © 1998–2022