Cyber Security: Click Fraud The majority of modern malware has been designed with malicious intent; to cause damage to a computer's operating system or its data, or to steal information from a user, but increasingly, it is designed to steal from online advertisers. Many large websites rely on advertising for their revenue. The amount of money spent on online advertising is growing rapidly. In 2021, digital advertising spending in the United Kingdom (UK) amounted to 23.47 billion British pounds. Advertisers like to use online advertising because it can be relatively cheap compared to a printed advertisement and because software allows for individuals to be targeted with specific adverts for products they are likely to buy. The most common type of advertising is 'pay per click' where advertisers only pay the owners of a site when a user clicks on an advert. However, this system can be subverted by either generating clicks that don't come from genuine customers, or by hijacking a click intended for a genuine advertiser. This is known as click fraud, and it accounts for more than 20% of all 'clicks'. Malware allows for it to be done on an industrial scale. Click fraud is a massive problem, stealing tens of billions of dollars from advertisers every year. The fraudsters responsible for this crime include tech-savvy website owners, trans-national organized crime gangs, and even Nasdaq-listed multinationals. Click Fraud MethodsThere are two frequently used modes of click fraud – and both can use botnets to generate the clicks.
In 2011, the FBI broke a click fraud operation based in Estonia that had infected more than four million computers in 100 countries and stolen in excess of $14 million from advertisers. In 2016, a Russian criminal group created 6,000 websites with over 250,000 pages containing video advertising. Their bot network 'watched' over 300 million video ads each day. They were defrauding the advertisers of close to four million dollars a day. |
|