Network Security & Hardware - eWeek


Battery 500 Project Charged Up over All-Electric Cars
Charting the Final Frontier--Google Maps for Indoors
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Botnets Tied to Increase in Click Fraud



 By: Brian Prince
2009-10-22
Article Rating:starstarstarstarstar / 3


There are 1 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
A report by Click Forensics links a growing amount of click fraud to botnets. The increase in botnet-related activity follows an overall upsurge in click fraud in the third quarter of 2009.

 

New research from Click Forensics shows botnets are playing a growing role in the spread of click fraud.

 

Click fraud is a scheme when a person, automated script or computer program mimicks a legitimate user clicking on an online ad in order to profit from a pay-per-click arrangement.

 

Resource Library:

According to the firm, which tracks click fraud data, botnets accounted for 42.6 percent of all click fraud in the third quarter of 2009. The increase is more than double what it was two years ago, and is up from 27.5 percent during the same quarter last year.

 

One of the changes weve seen is how botnets are being used for more than just phishing...botnets are becoming more sophisticated in how they commit click fraud, said Paul Pellman, CEOof Click Forensics. Before many were just taking control of PCs and having them automatically click on ads to generate money for the botnet. In the case of the Bahama botnet, the program is also taking over a users natural searches in order to make them look like a real search queries. This is more difficult to detect because the search is a real one not a robotic click.

 

Among these botnets is Bahama, which was observed redirecting traffic through 200,000 parked domains located in the Bahamas. The botnet hijacks natural search queries and employs automated clicking to mask itself as a legitimate source of search advertising traffic. According to Click Forensics, the endgame is to steal from advertisers and search engines.

 

After analyzing Bahama, Click Forensics found a link between the botnet and the recent NYTimes.com display ad scareware incident, and traced the source of the attack back to the Ukrainian Fan Club a group Click Forensics referred to as known online fraudsters.

 

While some of the botnets are using automated clicking programs to commit fraud, others are employing more sophisticated methods, Pellman said.

 

The Bahama botnet is one of the biggest ones weve seen committing click fraud from a volume perspective, he said. We regularly track many other botnets aimed at perpetrating click fraud but we havent called them out just yet.

 

The greatest volume of click fraud came in countries outside North America, specifically the U.K., Vietnam and Germany, respectively. The overall industry average click fraud rate was 14.1 percent, up from 12.7 percent for the second quarter of the year and down from the 16 percent rate reported for the third quarter of 2008.

 





  Reader Comments: Botnets Tied to Increase in Click Fraud
>>> Post your comment now!
ClickMeter
I would like to suggest ClickMeter a free link tracking service with same features and easy-to-use as a link shortner but focused on professional...
Posted At: 10-23-09
By: David
>>> Post your comment now!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Brian Prince
 


x}r㶲s\@♵MR-Ʋ,8:U*$ER59'ˮO7t$3q$%hݍFw?HturF3k}jxޢ>w߽ ~`\˩IZNڶ? }~mkru;{#|6o{'A{# KVgMFھlMe#k_gp,FcwM5dzZC'AjZ6(CJex,ZwzD~ThG⻶eMao}{Xd;'7 CT%h!!Qes?=~'f^B(ƻF {iZGd`vu(=yɰ { /\1r.b,ֽ;@/&lwrDƞIC d"LJA`:pm3 G^C]õ]\./RF eCwtSźS]kԏPL0H6=~0[ QK8QK k0~b[>4I| p\.* }=-:Ѝ<8]Ԓ],r"U)wS>dRr-2谖þɲnMw3a[]ޡlwǚZ*jUE9.TCxx,<<<,t|rfNe4oZïKjW ? ?uh;XCRy] ! Euzv{yyNoy%vx/ȯ;YJMD߀*0QI- I|/ Z@WP N5](E-[MюR=6,gfVҐ gUUYNZ͓ޙlni^77n'79_̲5<JEӀ Zvb"?[WkYK;7u"+|vg5M0\̱:֪V1?!&AJAf kķLJsa ":urPsڊfC+tUT7o`2 &4 f}-w za4ZAu&h)5?&9gMab&DJH7єye $}ВEtBA(O%ތE bO}ಆŹ>jYY6'*taeIUi [ӢKsQ}iuOfx߄)C EhYf7-vI%QI}{Qc1yc,VPQ9T*rϏMf[ԑplP)uu,}0 ZC>Odz'Դf@wP?: M/}@˥~a1@ LNa 8+GݺzL {>0kBi-j$nh-DCwM0Ieg! uO ΃drooM~ҁ4}aqjS? !Tgg ,zu= | /SPl~[>l038N\IQzDУ$@!-i]R@Az6W? -,rr2 "azGBjK%6Os@PGҥ;rjX*τbZ z)0ٜMjL=?j1!^|#'bXr`Y \h+e)ShƏ00UEBf'ShW(f3ᠸN4S}52{B;`a3s]etGKz4&Tլ&4Y R >5mVAL  |U=kb$`~f y6yBfOx;r+KF3UʝWRVy'g|))< +1!Y/>uzS\99IAw ew貟F=Of]ZЬkmH_ƠT:?ouR@,Ho` koռ¢ym<2D֑`9HM^>V "fˣ(e6LF%?Io 0f&6XC˦>ouqAʫ%uf!f6,ƴ'i?怚H|A2e &GmܡkC6euEsƱ4St%ҶY4h_Gsk@b4"T2paLHa0] elaؼ/<2kr]ilu0q`(Z3sef+;ꭧ{T+[pfۻ(S<&;alâ#_C2$6/Pk 0!/P\Q-W0.#_L_LU1(TOn»hCzX]>L,,@ХCkz]W9,#߬%hh<]HjP6C+jr\T+ qvX%ZAg~~Ȼ8 iJ @g}}90?O'F2k gOo)`3|xk}K-˰p1cZ$ c0kE /ÊTU5ݧ+i fB1&} ldAX~\U4Uud XY 0(E{0 qD ҀJ 5^ƙl)=T*ݝ'(R~h;?=`"+jUv*5P6>*09Nf~kkJ$X  c4}5:*jAe߯Y ^t m(5#c #2pgrh)hgj*8UoF* ϛ=G$1*@7Z 3e4* oE4}&MnjíJx[|8.sozJ~ Qby6UG3 Ⱦ -(R!G:{Jr zĀڗy@?uUJ Կ,_&c2 s*?=l)[36pTMg_=,UX37(p,У''~w|"-Ǥ|e2u-tn1b%[œ>E?9dN u3 U sf> V|m|0j嬙fwrʣ: ߀&?\@qccAHNo\OH/e?f#ÄonթrVgH*A:erN-×?iq* ҧNGnRHrX%7:iv=$CeTg FBR%%^萫YAɂ]AӀM\r8khs%p}/O&ZO 0u%hzGSYqza\/n/$h ^1Me0@ЧlJwٸZC8fGS=u(I,+o*MƱn@uztS6dUsVB gI; #&8=._Ewe2qyh7(==յћYӀ GL)߭~*惪Fr@*5]*{ se#gD)jeѓEO.'mJpX8 s>B-a'd1s<6ɷonjCSXp|~7?l)ɁXXD>DQkz ߉8x 2+6/-1{}VU'O(0h_pCﻶ$\auv1g {ͶRfo~GQV mwqD ۦ>\FuO0iNkux01fE/ ЏWKǽ/5.ašJ/GtL`Mՙj77pCmtj2}e'[x!KrcF1>`d˙](bogg ð ]6{a孀UN:^-7[WKߧ ?wL.[WM)^s-< rLpBj\_(d0 szl܄g#6b ` xѤ<"cxH15^6Q}E5qܜ5o8`B5c-ɅHg" &aEq4fUﭨ   k@JA=Vo8ku/i%D[( `E/Щ c~HFrI'zRG>ggM3_fEpUɉm #ݾ}i T t~mC?]/8ʚ=?EUN:k}"B2^&68/[]h)ޏIB"a.A)H7ԼN="c4qJh"g:A;6?m[ħ{, /䎡>=;SL%3U([4viQE-eф9rtJ1SB_|oIM2Gz17n q;f='s9X16q=wv`ϓ{~\AZFĩUrk#䰌NMl3,LjDž̳bt' C:=Ҹ5oHs09iJs jBGH|5|ÿ|§G r{kקOƭtoVsm,daSfo~s_; ?-l-8tǠR#K1&$Z^T@"*sᔤCȔXN GXd176P2QY;pGҠco3`̞xqG7෷bR#o=I>]bwP({_dOkmIr_ZDNq5Q {re(j ȓGDK`#i>R{+!bi4V;Tf{s̷֐5'|ȞF8^jɼe鼳~2O> AYؖrbLp$`-ݺܭ)³$`GDA|g˩g涣A jm Z0\k9f> V2OBկ&[qVL>9bzQ%Fm?^cϗ,t0a8Y&?6#d,Geb]&tş??z9/;jDyᦰL `L~}ے" ѠP,kϧ昂YV5/5ŒZz7ƃmjM܎ݟ~T >~d8sak VYݯ=/BgP.É>#d]#ݖof$hZ٩-,wkK%E3Υ3OZ1)Vᰖ 0Ո٥8";aG)1wmݷhof܂g׽qu9:.ֻшb:n9z' HCB(a}J('a1W:[Q8kNbu "C! :˼2cs[텬& M1.3ȉ) |p4aYD.xV?1flNQhA]="Ё anAsx/L#! D3|- $^:8R\*dQLxy{B3C@ B "B uhGd[bY߲+]vpڵSZaĮTttض/S,0`A sޝ>QnH =]J;+X\((#IJ\!]>kCO&ʑ^p۶F10UĮ2fM"ɔ1l,&nذ᥯L{&/fK.}1T%4?Rs'RIS@@Gd&ĖEiclvCX;|PCvhv^,mi8?/kK~|{6xxS*k3C*yDŒٞpV4(ix^KbmF%/*%aC & 0OQ3d )J՟QyK커ORRXoLJq\.bE$ U[uDU-U3B- ݌]}coj*2^K'6f(ƻnu'bF/=@1fڵz$O~5tDoW[R^"5@s^7p'lz}0׮iL%PT ^)|Ys}fZތor}}kLظ2uL]^|?; !ĺA@[!>M=Z߶wk9>4 $n e6KÍtUBCD,C3g>{a蘏IݙmJxgFMym7βlIv8nc}Rԑ/= &Nvz˚:0)aՄU_eȰވ\}co_pv=]= `)ڪgXe‹0v0pO(ODI֮ã!SJxztAAt)@nSN/&O,6gw$ş-,wl .Sw rk")^_]qڿ9 vommobQ**kzm6YogؑC֔fr*A۶{{ŷi:bW۲8pX1>"Zvm,щ{OazrCZf}-cIϬ{7U9 4w@fph֒+NɎ$8&wA8a[73_M4TOxm,GKOurMz'qsZ<[o_ڋK۪_{Q}uℋ`r2/UVv @{-,IKŋFP ђ,ÑBu}KT!i$?PCRuunx.#wKxqfl !tq,o(21zX67G ~VxrڈKv /X = DŽiHx!n1ZE} ˟#^tEw'y{Ld8e)*G)); ?۟`n3 w1Vc;2VȏR QEyHfN?I5?OXgm'd\(& <7Ƨ`fpULwwdOϒo'1ek('>?EX`Z.#L&DQ\׵gz@R(kX5XsD4#|2v tVA\|\^v* j\ln+H(+aږ 'Ʈ$Jjad7|$ƽ"U>0&sgy9ꊒbIc@j=1V&GBA8AXJo|E PaCc8(ĒI dq$h#8iLʃz^B=sj41!^r>&ƘKjx VQՒ|Rӊ,w)+ȈzaltOƌESj9.椷 GTGqM)8jD-~0;6|^Sۼ9!Vy <6LRk]갩,s3=i<1E7ZzҝZ<hfEj"ZtW;f 1 nr&:҉q.K;ޡ[Kx6_j~ΒR.gI* -qJ ҶWW/p|JM]i_ՔV-+suqhtٍ,bhi P=ӂ"Z{2֑: bRI+MݳaSܣIх%;=kB%0Y飏ji' 1 m0=,Ep}Xa>:>()[}1W-nᮦq"LjW4I`}k{wi/1~J+kѱˮ8̜0pщF;6vCWѵATJ{3eJ-h>#Թ<יIY_vyZ~\`{ c +ÍiZ|fVؖTm}qV.NS)q:Ʌ莥 @$)5,?^J kk_fVܞVk'*a<~\=-'|͈Vs%.7/<OcB>k \TbЭB1˪M;InP~z*ڟOd^f}B G=NlE dM,ë|Ua|%wR[lɦx7kV0'qJC7)(ʁ&Ө~3l@"r? I:NaicMr/ǯ \Ixfw\ND>oCVY `Oh$~bH]f-RWld""@ш/uTo6Krռ^6{M=<xswB&8 ܞ[C.49jS* Z;5g49'vQY 2z ,A%NJC^M}CcP9Ĝ#MXQk~*JP#[W'p`\pr@K$K*2&Bs879|tLyynOKZ&9a k(E$YxmDRPi ctKXa،6S`uΦ(*|괮[7 T6, `3wУ4ϓo ?}IqHg'@s Wt03_ c!L)%n47Xp_)'4`M]Xg WS}Vx}2=jcܕiZ5J`-=5KޝR>ɖàZEQp#ߛSg0Y'غ9P =M蕴B^Ȑq~{X~@|LBz،\{cݹ嘫7/? ift?tOoZ׽Vߠg} \MGݩ;'ϧ筫M몗[yyjkyl2/*˙ΒQ9jNQʉhSgĵ,2^ûLKvE Ccqq^Sw|={J"Q^e5DM@ }u7L&6+Se )~6=mBf_ry72q S*\$_JeY+ OYa uug賲3VNa{Ar!Wge_7C@qu}9K+ťW*7YKxM}%ks[Z1nvd}חG{1Pi +{#6³8xEǹW4<< X1rnmŚ/JYmJ&=}}2֧7'5KAF0_wQ>ҷe&o3?`bGu@' @9N_Ew[MAw*[/:)7ڸ=MԕU.nmG;yh#U]Y7m,P&QcgeӾσfţu>Vl<-t&j\ef(+@J~@o>t>RqFPcnM= !͛e:I>fJC#Dk(xYx3cLzbejf2aSKp^Wv,P@0pTB P}oq =w] ؛(hw33o /IX>&-\ʠaC7a,%sv[F0 S|wN3Y&38W!=7cUݣQGgB~2RV@'TЫ H[&SI" 9oє^\C*ǓH,_bYdǺPs(c(|_3˸ [2FlX jXJrX\N.c˃a?]`s,BNY?/ Ceg󡟼w80~.%Ťe @ @SVM/~m`5vf]32Ov7' U/݋Zz`$֚lAłv3FF(FČܝ0@PJ]Xߜ {P3r.mc6Hm\wrlCknܙ%gO_~1'~#pIi)Jˌ?Ih"v]!6 R Ň%/K˙=+:S p79}0DmaO,|Ŷ/G㿄&w`WvCN =cOIt>x*8" "H "s{B|%i{JP%n3!-q>\&Q 霰)#,|HNSPuXGm:Zd[c Cs?>N@3nf BXtZwkdY9ٖ'~U h$7=j"6: gK“J'rFN1^R”s7:o˗z|1)H@%Wb9G8]! ""`A]eD$z E/ncC>X[cږ9abV)qdzӧ7-[$@O"OC24a)yc<%znG}ixM a *۳|?Oe Lt0͡o0kn>ʷQ$L{O죗iO_d%\#d3@FWD0;"Im.KE%&(Xp\'AΙz$w6G}d ȉx*Ԯ-^f͜ ŧW<߶JP+JdV@8l:ؖ?^ #^$&+$~Il=ae{,+Wrcd+{f:e^ŃtNt3CB %`GYU`kv8u vKѪ f7"60ޏwPRـ&@6:pz2 iѨpCUDǮ ~uu^|Ua=tksMΜ6 φŀd_qxN|L/ة9:| g)C2^#s!oYX&7ęV //O CׅѰ0 L{,lyEG%RRNCa 0F #:`2 19.G xI1%h3l䣈mAb?ڵ-caG?ԝY)2ޘ~HvdzU.\d3slQozc|>[z0XjPwN1y,XBL 52lt*^|tGYEL`&;]+N%t&ж?g8هl*~&/l{k+ЃT~xFK-^P௣|E>byx ŧ$NS?|:T+ 6ƕyz@Xqө8Y5u{/Kc^; <\FuTO3uG??5_ayBeFhV\m_V>\vnbo`{8L (Ks(ӹ9kA0}uu>Y/7 ~} Wha<y&F2kV*wN㛼VtƦI:1qzr.{aT셳Qbm٦dTi29J{) 1^[(M92>dv=̭Mӝo3a-d4džIkckjYu