Glossary

Search term

Ad Fraud and Scamming in Digital Advertising Glossary

+25 Digital Advertising Security terms, including practices, metrics, and solutions.

Ad Fraud

Any intentional activity that generates false ad interactions (impressions, clicks, installs) to steal advertising spend without providing real value.

Security

Ad Injection

Unauthorized placement of ads into websites or apps, usually via malware, redirecting users or hijacking monetization.

Ad Stacking

Layering multiple ads on top of one another in the same ad space, where only the top ad is visible but all are counted as impressions.

Ad Verification

Technology used to ensure ads are displayed in brand-safe, fraud-free, and viewable environments according to campaign specifications.

Attribution Fraud

Deception to steal credit for a legitimate conversion, such as when a fraudulent actor generates a click just before a conversion so the install is attributed to them.

Bot Traffic

Ad interactions (clicks, views, conversions) generated by automated scripts or programs instead of real human users.

Brand Safety

Measures that ensure ads do not appear alongside harmful, illegal, or inappropriate content that could damage a brand's reputation.

CAPTCHA

A tool to differentiate between bots and humans, often used in forms and sign-ups to prevent automated abuse or fraud.

Click Fraud

Artificially generating clicks on ads (often via bots or click farms) to inflate metrics or drain a competitor’s ad budget.

Security

Click Injection

A type of attribution fraud where malicious apps detect a download event and inject a fake click just in time to take credit for the install.

Click Spamming

Massive, random click generation without real user interaction, hoping one click gets credited for a future conversion.

Domain Spoofing

Fraud tactic where scammers impersonate legitimate websites or apps by faking URLs/domains to sell fake ad inventory.

Fingerprinting

Tracking technique that identifies devices without cookies by analyzing characteristics like IP, browser, screen resolution, and more. It can be used ethically or maliciously.

Impression Fraud

Falsifying ad impressions, such as displaying ads in hidden or non-viewable placements, to generate illegitimate revenue.

Install Fraud

Faking app installations using emulators, bots, or device farms to manipulate attribution and inflate acquisition numbers.

Malvertising

Malicious advertising that delivers malware via ad networks or compromised ads, often infecting devices upon ad load or click.

Phishing

A form of cyber-attack that tricks users into revealing sensitive personal or financial information by pretending to be a trusted source.

Pixel Stuffing

Placing ads inside tiny (often 1x1 pixel) invisible elements to fraudulently count impressions that were never seen.

Proxy Traffic

Traffic routed through anonymous or masked IPs (proxies or VPNs), often used to hide the true source of bot or fraudulent activity.

Scamming

General term for deceptive practices that seek to trick users or advertisers, such as fake giveaways, fraudulent offers, or misleading ads.

SDK Spoofing

Faking signals from a mobile app’s SDK to simulate legitimate in-app events like installs or purchases, misleading attribution systems.

Threat Intelligence

Collecting and analyzing data about threats (like botnets or new fraud schemes) to proactively protect advertising systems and campaigns.

Two-Factor Authentication (2FA)

A security method requiring two types of credentials (e.g., password + mobile code) to reduce the risk of unauthorized access.

Viewability

Metric that determines whether an ad was actually visible on screen (e.g., at least 50% of the ad for 1 second). Low visibility can be an indication of fraud.