Lead gen fraud
Bot fraud (clicks)
Fraud scheme operators use emulators running retained scripts or infected devices in a botnet to automate nonhuman traffic, including click events, on a large scale. This technique is especially prevalent in the cost-per-click (CPC) space. Bot clicks can even be leveraged to generate fraudulent likes and follows, effectively committing influencer fraud across social media.
How they do it
- Malicious publisher has registered for advertiser’s CPC affiliate program and features text links directing traffic to advertiser’s site
- Malicious publisher hires a traffic broker to augment their click volumes
- Traffic broker operates a large botnet, which emulates real devices/human browsing behaviors to produce invalid click traffic
- Botnet is directed to malicious publisher’s site to click through the text link to advertiser’s site
- Advertiser attributes credit to publisher for an invalid click event and pays them the designated CPC
