Understanding fraudulent activities in online ad exchanges

Authors:
Brett Stone-Gross;Ryan Stevens;Apostolis Zarras;Richard Kemmerer;Chris Kruegel;Giovanni Vigna
Affiliations:
University of California, Santa Barbara, CA, USA;University of California, Santa Barbara, CA, USA;Foundation of Research and Technology, Hellas, Greece;University of California, Santa Barbara, CA, USA;University of California, Santa Barbara, CA, USA;University of California, Santa Barbara, CA, USA
Venue:
Proceedings of the 2011 ACM SIGCOMM conference on Internet measurement conference
Year:
2011

Citing 14
Cited 12

Secure accounting and auditing on the Web

WWW7 Proceedings of the seventh international conference on World Wide Web 7
Duplicate detection in click streams

WWW '05 Proceedings of the 14th international conference on World Wide Web
Detectives: detecting coalition hit inflation attacks in advertising networks streams

Proceedings of the 16th international conference on World Wide Web
Dynamics of bid optimization in online advertisement auctions

Proceedings of the 16th international conference on World Wide Web
The anatomy of Clickbot.A

HotBots'07 Proceedings of the first conference on First Workshop on Hot Topics in Understanding Botnets
Combating click fraud via premium clicks

SS'07 Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium
Detecting Click Fraud in Pay-Per-Click Streams of Online Advertising Networks

ICDCS '08 Proceedings of the 2008 The 28th International Conference on Distributed Computing Systems
Spamalytics: an empirical analysis of spam marketing conversion

Proceedings of the 15th ACM conference on Computer and communications security
Your botnet is my botnet: analysis of a botnet takeover

Proceedings of the 16th ACM conference on Computer and communications security
Fighting online click-fraud using bluff ads

ACM SIGCOMM Computer Communication Review
The Economics of Click Fraud

IEEE Security and Privacy
Walowdac - Analysis of a Peer-to-Peer Botnet

EC2ND '09 Proceedings of the 2009 European Conference on Computer Network Defense
The underground economy of spam: a botmaster's perspective of coordinating large-scale spam campaigns

LEET'11 Proceedings of the 4th USENIX conference on Large-scale exploits and emergent threats
Click fraud resistant methods for learning click-through rates

WINE'05 Proceedings of the First international conference on Internet and Network Economics

Serf and turf: crowdturfing for fun and profit

Proceedings of the 21st international conference on World Wide Web
Measuring and fingerprinting click-spam in ad networks

Proceedings of the ACM SIGCOMM 2012 conference on Applications, technologies, architectures, and protocols for computer communication
Measuring and fingerprinting click-spam in ad networks

ACM SIGCOMM Computer Communication Review - Special october issue SIGCOMM '12
Knowing your enemy: understanding and detecting malicious web advertising

Proceedings of the 2012 ACM conference on Computer and communications security
Manufacturing compromise: the emergence of exploit-as-a-service

Proceedings of the 2012 ACM conference on Computer and communications security
Dissecting ghost clicks: ad fraud via misdirected human clicks

Proceedings of the 28th Annual Computer Security Applications Conference
AdRob: examining the landscape and impact of android application plagiarism

Proceeding of the 11th annual international conference on Mobile systems, applications, and services
Verifiable auctions for online ad exchanges

Proceedings of the ACM SIGCOMM 2013 conference on SIGCOMM
Using co-visitation networks for detecting large scale online display advertising exchange fraud

Proceedings of the 19th ACM SIGKDD international conference on Knowledge discovery and data mining
Shady paths: leveraging surfing crowds to detect malicious web pages

Proceedings of the 2013 ACM SIGSAC conference on Computer & communications security
Impression fraud in online advertising via pay-per-view networks

SEC'13 Proceedings of the 22nd USENIX conference on Security
Stranger danger: exploring the ecosystem of ad-based URL shortening services

Proceedings of the 23rd international conference on World wide web

Quantified Score

Hi-index	0.00

Visualization

Abstract

Online advertisements (ads) provide a powerful mechanism for advertisers to effectively target Web users. Ads can be customized based on a user's browsing behavior, geographic location, and personal interests. There is currently a multi-billion dollar market for online advertising, which generates the primary revenue for some of the most popular websites on the Internet. In order to meet the immense market demand, and to manage the complex relationships between advertisers and publishers (i.e., the websites hosting the ads), marketplaces known as "ad exchanges" are employed. These exchanges allow publishers (sellers of ad space) and advertisers(buyers of this ad space) to dynamically broker traffic through ad networks to efficiently maximize profits for all parties. Unfortunately, the complexities of these systems invite a considerable amount of abuse from cybercriminals, who profit at the expense of the advertisers. In this paper, we present a detailed view of how one of the largest ad exchanges operates and the associated security issues from the vantage point of a member ad network. More specifically, we analyzed a dataset containing transactions for ingress and egress ad traffic from this ad network. In addition, we examined information collected from a command-and-control server used to operate a botnet that is leveraged to perpetrate ad fraud against the same ad exchange.