Commentary
Click Fraud: Guidelines Are Nice, Prison And Fines Better
- by Sean Hargrave , Staff Writer, June 18, 2015
So, the publication by JICWEBS (set up by the IAB UK and AOP, among others, to provide standards for online advertising) of a list of guidelines for publishers, advertisers and networks has to be welcomed. Sections for each part of the industry raise the questions that each should consider asking one another. The basic point is that publishers should be able to show they have the technology in place to ensure they are only serving content to human beings, rather than bot nets. Similarly, advertisers need to ask whether publishers can show what steps are taken to ensure the messages will be seen by humans, rather than computers run by fraudsters.
The guidelines are pretty basic and culminate in the real thorny issue. Ad networks are reminded that in the rush to boost income, salespeople at networks may accidentally sign up fraudulent sites. To avoid this, people running ad networks should beware of sites that spring up and suddenly attract an awful lot of traffic.
Now, you can call me an old cynic, but sometimes you need to just imagine the industry squaring up to an offender only for the transgressor to pose the retaliatory question raised by so many playground bullies who have been told they should mend their ways and instead offer the refrain "or what?" Here we come to the rub. There really is no "or what" that the industry can do. Have you ever heard of any click bot network organisers being jailed? Have you ever seen an ad network that didn't take precautionary steps outed in any way?
I mention networks because this is surely where the majority of the problem has to lie. Advertisers clearly don't want to waste their money, and the vast majority of publishers are simply putting their content out there hoping that real people will engage with it and pay the bills to keep the lights on. As we shift toward automated buying through ad networks, it's clearly here where we need the biggest click fraud prevention measures to take place. But when there's no real iron fist inside the kid glove that the IAB UK or AOP takes to the market, we're only reminded of the age-old saying that locks only keep out honest people.
Don't get me wrong, I'm no blatant critic of the guys who are serious about tackling this issue, I would wonder, though, whether they should be making more of who has signed up to its digital trading principles, known as DTSG, and -- perhaps more importantly -- who has not. Perhaps there could be more done to publish audits on the signatories to make sure they are still compliant and how they score when it comes to ensuring that media is traded fairly and displayed to human beings. I am not inside the media-buying industry, so this may already happen -- but perhaps advertisers and publishers could be offered a DTSG tick box to denote that they will only deal with companies signed up to the scheme? That would surely increase confidence. Everyone has grown up enough to know that you cannot get rid of fraud completely, but getting it down to low-single-figure percentage points is an admirable target, and offering the opportunity to only work with other companies dedicated to the noble aim has to be an option that is made available, or at least more clearly visible.
Which brings us on to the police. Again, I'm not an anarchist pointing the finger, because tracking bot net owners must be very tricky cross-border work. However, the Metropolitan Police volunteered to speak at a MediaPost event in London last October about the issue. I was very surprised and cautioned that we would be interested to hear about what they are actually doing and what has been achieved, rather than vague promises of looking into the issue. I was not entirely surprised when the officers involved pulled out on the morning of the event. Clearly, there was nothing of any importance they had to relate to the attendees.
So, that said, surely now is the time to get tough. If the bot net owners can't be found across borders immediately, then why not investigate which networks are not protecting clients or which thieves are setting up rogue sites which suddenly receive a lot of traffic and advertising overnight (via an ad exchange of course)? Why not investigate the serial offenders here who are, at worst, fraudsters -- or at best, what the police would refer to as "fences" -- the people who aid crime by handling stolen goods, pretending that the absence of evidence they have been stolen means they cannot be shown to be acting illegally.
We have the guidelines now; we have the DTSG signatories. It's truly is time for the "or what" retort to be answered with some action -- large fines or prison sentences should do the trick. This is a multibillion-dollar global fraud we're talking about here. Just because people don't get killed or injured physically, there's no excuse not to tackle it head on with the full force of the law.
Sean Hargrave is MediaPost's London Editor. You can reach him at seanhargrave@btinternet.com.
Good article Sean one of the most clear and to the point I've read on an issue that is getting very noisy (rightly) this year.
The new JICWEBS standards are definitely to be welcomed as will further work from TAG over the course of the year.
As I've been banging on about at events to anyone who will listen, the basic issue for both supply and demand sides is being willing and able to (respectively) 'demonstrate' and 'interrogate' *accountability*, and as things move more towards programmatic this becomes more important due to the potential loss of transparency in the process.
Publishers (and e.g. ad networks) need to show they have their house in order and the tech and processes are in place to ensure brand safety and fraud protection- those doing so best benefitting most. The demand side, on the other hand, has the power as they have the budgets, so they can incrementally shape the market and effectively enforce these new standards as they come in, by with holding spend to stragglers. Just asking awkward questions of their media agencies would be a start- and I know for a fact many brands are not even doing that yet.
In this way the market can start to function properly and fraud will become less lucrative. As it stands, although many are well on the way to being (moreorless) on top of this issue, others have barely started to address it.
For BuzzCity's part we are in the process of becoming signed up to the DTSG brand safety standards, and in terms of ad fraud protection, this has been a central business 'pillar' for us for several years- pattern detection and various heuristic techniques (involving automated and manual elements) across billions of clicks to ensure suspicious traffic is minimalised (down to below 2%), 'bad' traffic is blacklisted and advertisers get refunded by default without having to ask.
In fact what can happen is exactly what you imply above- if we do sign up what turns out to be a low quality or possibly fraudulent publisher (China is not exactly great for this), they will not make it past our first vetting stages and will be dropped, certainly months before they get anywhere near our brand safe channels- sometimes meaning we lose weeks of publisher team work, but worth it to maintain the integrity of the network, without which you are in trouble.
One last point, which you have made elsewhere- the more you TEST and judge campaigns by lower-funnel metrics (whatever the cost model) the harder the bots will have to work to trick you.
BUT crucially this is an industry-wide problem, and you cannot escape it entirely just by running to the most "premium" suppliers- any more than you can guarantee always avoiding food poisoning by only eating at Heston Blumenthal restaurants (whoops!)- and it will cost you a lot more!