Please create an account to participate in the Slashdot moderation system

 


Forgot your password?
Close
typodupeerror
×

IE Used To Launch Yahoo IM Clickfraud 76

Posted by kdawson from the botless-botnets dept.
An anonymous reader writes, "There's a new Instant Messaging worm in the wild that is taking the idea of Botnet clickfraud up a level. It trades in automated drones (prone to malfunction and detection) for real live people who (of course) have the option of not actually clicking anything, thus theoretically making their clicks harder to identify as 'fraudulent.' This IM attack doesn't even need a victim to physically run anything to become infected — simply visiting a certain site in Internet Explorer will cause the files to download and start sending infection messages. At this point, their homepage is changed to a site using Mesothelioma (a rare form of cancer) to ring up high-paying results on the perpetrators' Google ads. As the researcher who discovered the infection notes, 'It's way, way harder to trace some random boob who has a ton of (partially) unconnected people shunting IM links all over the place. Try staying anonymous as a Botnet owner who just had the entire details of his server splattered across the net by Shadowserver. What will be interesting to see is if some of the smaller Botnet guys ditch their technical woes and jump on the much-easier-to-maintain IM bandwagon to get their clickfraud kicks.'"
This discussion has been archived. No new comments can be posted.

IE Used To Launch Yahoo IM Clickfraud More

IE Used To Launch Yahoo IM Clickfraud

Comments Filter:

  • Re:Just another example ... (Score:3, Insightful)

    by Otter ( 3800 ) on Tuesday October 03, 2006 @09:00PM (#16300049) Journal
    ...and clickfraud at the expense of class-action lawyers trying to sue whatever is left on the skeletons of asbestos companies (who did you think had such an expensive interest in mesothelioma?), while undoubtedly Wrong, isn't high on my list of the world's problems.

  • Re:a question on "click fraud"... (Score:2, Insightful)

    by generic-man ( 33649 ) on Tuesday October 03, 2006 @10:32PM (#16300529) Homepage Journal
    A is paying B with the expectation that people genuinely interested in A's ad will click that ad. If C simulates clicks without even looking at the ad, A isn't getting his money's worth when he pays for his ads. Where the line between "users clicking ads without a genuine interest" and "programmatic click fraud" is drawn is still subjective, though.

  • Easy to stop... (Score:1, Insightful)

    by Anonymous Coward on Tuesday October 03, 2006 @10:54PM (#16300671)
    I didn't RTFA, but presumably the ads being displayed are associated with a certain Google publisher account (or a handful of them). It should be pretty easy for Google to mark all clicks from those accounts as fraud, not charge the advertisers, and not pay the publishers.

Slashdot Top Deals

"If it ain't broke, don't fix it." - Bert Lantz

Close