Apr 29, 2017 | ad fraud, facepalm, security, verification
TL;DR What we have in ad fraud research, is companies that are not equipped or incentivized to invest in to serious research, and media that does not know what to believe and what to disregard. Once a company grows to a certain size, it becomes almost impossible for...
Oct 31, 2016 | ad fraud, botnet, DDoS, security, sourced traffic
But wait, if DDoS attacks can trigger ads on the target site, and sites make money from ads (and mostly only ads), whose the target? Can DDoS attacks trigger ads? TL;DR Yes. All application / layer-7 DDoS attacks trigger ads on the target site by default....
May 18, 2016 | malvertising, public policy, security
In the light of recent high profile malvertising attacks, the adtech industry is finding itself as a center of attention in respect to the ongoing malware epidemic. In this article we will cover how in fact it is the industry itself that to some extent is causing...
May 18, 2016 | malvertising, public policy, security
In the light of recent high profile malvertising attacks, the adtech industry is finding itself as a center of attention in respect to the ongoing malware epidemic. In this article, we will cover how in fact it is the industry itself that to some extent is causing...
Apr 8, 2016 | privacy, researcher safety, security
Here is a simple guideline for researchers to establish a basic level of online anonymity for the purpose of disconnecting identity and physical location from research activity. What do you need? a prepaid credit card an anonymous prepaid sim card What level of...
Jan 25, 2016 | ad fraud, cybercrime, security, verification
Ad fraud is the biggest cybercrime, yet it gets almost no attention from security researchers. It is clear why security researchers do not want to be part of countering ad fraud activity, but it is not so clear what the advertising technology industry is going to do...