no please after you detecting fraud in affiliate
play

No Please, After You: Detecting Fraud in Affiliate Marketing - PowerPoint PPT Presentation

Mar 23, 2023 •296 likes •671 views

No Please, After You: Detecting Fraud in Affiliate Marketing Networks Peter Snyder <psnyde2@uic.edu> and Chris Kanich <ckanich@uic.edu> University of Illinois at Chicago Overview 1. Problem Area: affiliate marketing 2. Data Set :

  1. No Please, After You: Detecting Fraud in Affiliate Marketing Networks Peter Snyder <psnyde2@uic.edu> and Chris Kanich <ckanich@uic.edu> University of Illinois at Chicago

  2. Overview 1. Problem Area: affiliate marketing 2. Data Set : HTTP request records 3. Methodology : classification algorithm 4. Findings : numbers and stakeholder analysis

  3. 1. Problem Area

  4. Affiliate Marketing Online Retailers Publishers Web Users

  5. Affiliate Marketing • Common method for funding “free” content • Largest programs include Amazon, GoDaddy, eBay and WalMart • Both direct programs and networks / middle-parties

  8. thesweethome-20

  9. thesweethome-20

  13. Affiliate Marketing Terms • Affiliate Marketing ID: 
 Unique identifier that Online Retailers use to tie Web Users to Publishers • Affiliate Marketing Cookie: 
 Cookie set by Online Retailer, tying Web User to the “delivering” Publisher • Cookie Setting URL: 
 End points, controlled by Online Retailers, that set an affiliate marketing cookie on a Web User

  14. Affiliate Marketing Fraud • Assumption 
 Having an affiliate marketing cookie →
 User intended to visit the online retailer →
 Retailer helped sale • Exploit 
 Get your affiliate marketing cookie on as many browsers as possible • Methods 
 hidden iframes, plugins, malware, automatic redirects, etc.

  15. 2. Data Set

  16. Affiliate Marketing Programs • 164 affiliate marketing programs • Popular : Amazon, GoDaddy • Networks : ClickCash, MoreNiche • Selection methods • Predictable URLs • HTTP / no encryption

  17. Affiliate Marketing Programs Data Amazon GoDaddy (www\.)amazon\.com ^godaddy\.* Domains ^/(?:.*(dp|gp)/.*)? [&?]tag=(?:&|\?|^|;)isc= Cookie Setting URLs *handle-buy-box* *domains/domain-configuration\.aspx* Conversion URLs tag=(.*?)(?:&|$) cvosrc=(.*?)(?:&|$) Affiliate ID Values

  18. HTTP Request Logs • 660G of HTTP Requests (bro-log format) • 2.3 billion records • January and February 2014 Request Information Response Information Sender and destination IP Mime type Domain and path HTTP response code Referrer Timestamp Cookies User agent

  19. 3. Methodology

  20. Data and Preprocessing

  21. Browsing Session Trees bing.com Xie, Guowu, et al. ts_0 publisher.com "Resurf: Reconstructing web-surfing activity from ts_1 other.com network traffic." IFIP ts_2 amazon.com?tag=<x> Networking Conference, 2013 . IEEE, 2013. ts_3 <checkout url> ts_4 example.com

  22. Browsing Session Trees Simple Measurements bing.com • Number of referrals in each ts_0 publisher.com program ts_1 other.com • Number of publishers in each program ts_2 amazon.com?tag=<x> • Number of conversions / purchases in each program ts_3 <checkout url> • How long a user takes to be ts_4 example.com referred • How long a user spent on site after being referred

  23. Browsing Session Trees Simple Measurements bing.com • Number of referrals in each ts_0 publisher.com program ts_1 other.com • Number of publishers in each program ts_2 amazon.com?tag=<x> • Number of conversions / purchases in each program ts_3 <checkout url> • How long a user takes to be ts_4 example.com referred • How long a user spent on site after being referred

  24. Browsing Session Trees Simple Measurements bing.com • Number of referrals in each ts_0 publisher.com program ts_1 other.com • Number of publishers in each program ts_2 amazon.com?tag=<x> • Number of conversions / purchases in each program ts_3 <checkout url> • How long a user takes to be ts_4 example.com referred • How long a user spent on site after being referred

  25. Browsing Session Trees Simple Measurements bing.com • Number of referrals in each ts_0 publisher.com program ts_1 other.com • Number of publishers in each program ts_2 amazon.com?tag=<x> • Number of conversions / purchases in each program ts_3 <checkout url> • How long a user takes to be ts_4 example.com referred • How long a user spent on site after being referred

  26. Browsing Session Trees Simple Measurements bing.com • Number of referrals in each ts_0 publisher.com program ts_1 other.com • Number of publishers in each program ts_2 amazon.com?tag=<x> • Number of conversions / purchases in each program ts_3 <checkout url> • How long a user takes to be ts_4 example.com referred • How long a user spent on site after being referred

  27. Classifier: Training Set bing.com • Did the user intend to travel from ts_0 publisher.com some-referrer.com to amazon.com? ts_1 other.com • Built training set of 1141 relevant trees (subset of January data) amazon.com?tag=<x> ts_2 • If referrer was still available, direct ts_3 <checkout url> test • If referrer was not available, infer from graph (log data)

  28. Classifier: Features bing.com ts_0 publisher.com 1. Time before referral ts_1 other.com 2. Time after referral 3. Is referrer SSL? 4. Graph size amazon.com?tag=<x> ts_2 5. Is referrer reachable? 6. Google page rank of referrer ts_3 <checkout url> 7. Alexia traffic rank 8. Is referrer domain registered? 9. # years domain is registered 10.Tag count

  29. Classifier: Features bing.com ts_0 publisher.com 1. Time before referral ts_1 other.com 2. Time after referral 3. Is referrer SSL? 4. Graph size amazon.com?tag=<x> ts_2 5. Is referrer reachable? 6. Google page rank of referrer ts_3 <checkout url> 7. Alexia traffic rank 8. Is referrer domain registered? 9. # years domain is registered 10.Tag count 93.3% accuracy

  30. Did the user spend Was the publisher’s / No No more than two seconds referrer’s site served Did the redirection on the the online over a correct TLS occur after 2 seconds? retailer’s site after connection? referral? Yes Yes Yes No Honest Fraudulent Referral Referral

  31. 4. Findings

  32. Online Retailer Popularity Retailer Requests Unique Sessions Amazon.com 2,663,574 87,654 GoDaddy 7,320 364 ImLive.com 731 194 wildmatch.com 3 1 Total 
 2,671,808 88,257 (166 programs)

  33. Publishers Retailer Honest Fraudulent Total Amazon.com 2,268 1,396 3,664 GoDaddy 5 19 24 ImLive.com 4 7 11 wildmatch.com 0 1 1 Total 
 2,281 1,426 3,707 (166 programs)

  34. Affiliate Marketer Referrals Retailer Honest Fraudulent Total Amazon.com 12,870 2,782 15,652 GoDaddy 399 98 497 ImLive.com 9 13 22 wildmatch.com 0 1 1 Total 
 13,283 2,897 16,180 (166 programs)

  35. Conversion Events Total Retailer Amazon.com GoDaddy (166 programs) Conversion 15,624 26 15,650 Events Affiliate 955 8 693 Conversions Honest 781 8 789 Fradulent 174 0 174 “Stolen” 0 0 0

  36. In The Paper… • Session tree building algorithm • Details of how we generated the classifier • Stakeholder analysis of affiliate marketing fraud • More numbers…

  37. Thanks! Peter Snyder – psnyde2@uic.edu Chris Kanich – ckanich@uic.edu University of Illinois at Chicago

Recommend

No Please, After You: Detecting Fraud in Affiliate Marketing Networks Peter Snyder and Chris

No Please, After You: Detecting Fraud in Affiliate Marketing Networks Peter Snyder and Chris

No Please, After You: Detecting Fraud in Affiliate Marketing Networks Peter Snyder and Chris Kanich University of Illinois at Chicago Chicago, Illinois, USA {psnyde2,ckanich}@uic.edu ABSTRACT Online affiliate marketing is a commercial system

251 views • 11 slides
Insider Fraud Laura Hutton SAS detecting the invisible The new fraud landscape &amp; the rise

Insider Fraud Laura Hutton SAS detecting the invisible The new fraud landscape &amp; the rise

Insider Fraud Laura Hutton SAS detecting the invisible The new fraud landscape &amp; the rise of the insider How to rob a bank How to detect fraudulent staff Fraud is a global problem Typical organisations lose 5% of revenues Source:

503 views • 34 slides
Detecting Voter Fraud Context in an Electronic Voting Context Introduction: Relevance of An

Detecting Voter Fraud Context in an Electronic Voting Context Introduction: Relevance of An

Detecting Voter Fraud in an Electronic Voting Detecting Voter Fraud Context in an Electronic Voting Context Introduction: Relevance of An Analysis of the Unlimited Reelection Vote in Venezuela Election Forensics Previous Research Ines

686 views • 45 slides
A Primer on Detecting, Preventing, and Investigating Nonprofit Fraud, Embezzlement, and

A Primer on Detecting, Preventing, and Investigating Nonprofit Fraud, Embezzlement, and

nonprofit alert FEBRUARY 19, 2015 A Primer on Detecting, Preventing, and Investigating Nonprofit Fraud, Embezzlement, and Charitable Diversion Increasing Scrutiny of Nonprofit Fraud, Embezzlement, and Charitable Diversion CALIFORNIA DELAWARE

287 views • 9 slides
AFFILIATES Adrienne Jeffries AGENDA Introduction Who is an Affiliate? Who is not an

AFFILIATES Adrienne Jeffries AGENDA Introduction Who is an Affiliate? Who is not an

WORKING WITH UNIVERSITY Karl Pfister AFFILIATES Adrienne Jeffries AGENDA Introduction Who is an Affiliate? Who is not an Affiliate? Affiliate Types Affiliate Access Approval &amp; Forms Affiliate Approval Affiliate

739 views • 35 slides
Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention

Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention

Fraud Overview Agenda Fraud Overview Fraud Triangle and Red Flags Fraud Prevention Case Studies Our Commitment Spring ISD Source: ACFE &amp; Fraud Overview What Is Fraud? Fraud is any intentional act or

405 views • 18 slides
Compliance and Ethics Week Detecting and Preventing Fraud on Grant Projects Donna R. Kiley,

Compliance and Ethics Week Detecting and Preventing Fraud on Grant Projects Donna R. Kiley,

Compliance and Ethics Week Detecting and Preventing Fraud on Grant Projects Donna R. Kiley, Associate Director Jeneeta C. Howe, Compliance Associate November 2, 2015 Compliance &amp; Ethics Week November 2-6, 2015 Got Ethics Fraud in

185 views • 16 slides
Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is

Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is

Fraud Prevention: The Prevention and Detection of Fraud Begins with You Takeaways What is fraud? Definition Facts Four factors Fraud risk assessment Four evaluation criteria Common fraud schemes Case studies

707 views • 60 slides
Consolidated Slides from 11-8-18 Fraud &amp; Cyber-crime Presentations FBI: Threat Analysis

Consolidated Slides from 11-8-18 Fraud &amp; Cyber-crime Presentations FBI: Threat Analysis

Consolidated Slides from 11-8-18 Fraud &amp; Cyber-crime Presentations FBI: Threat Analysis Slides Not Provided Internal Control Reviews Summary Report State Auditor: Detecting Fraud (no videos) Evolving Controls Summary of

1.11k views • 89 slides
What is Fraud ? The Fraud Act 2006 defines fraud as . Headed by Investigations Manager

What is Fraud ? The Fraud Act 2006 defines fraud as . Headed by Investigations Manager

Points to cover Leicester City Council Revenues &amp; Benefits Investigation Team What is Fraud? Fraud Awareness Key issues for the Team Audit and Risk Committee Referrals &amp; Investigation Process Sanctions &amp;

69 views • 4 slides
Detecting client-side e-banking fraud using a heuristic model Tim Timmermans Jurgen Kloosterman

Detecting client-side e-banking fraud using a heuristic model Tim Timmermans Jurgen Kloosterman

Detecting client-side e-banking fraud using a heuristic model Tim Timmermans Jurgen Kloosterman tim.timmermans@os3.nl jurgen.kloosterman@os3.nl University of Amsterdam July 4, 2013 Tim Timmermans, Jurgen Kloosterman Research project 2. (1

373 views • 21 slides
The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of

The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of

The Fraud Indicator in the UK Professor Mark Button Centre for Counter Fraud Studies Outline of Presentation General measures of fraud Past measurement of fraud The annual fraud indicator and fraud Theres no fraud here, Ive

684 views • 26 slides
Introductions Roger Owens SIU Program Mgr. Enumclaw Insurance Group Course Purpose The Purpose

Introductions Roger Owens SIU Program Mgr. Enumclaw Insurance Group Course Purpose The Purpose

Introductions Roger Owens SIU Program Mgr. Enumclaw Insurance Group Course Purpose The Purpose of this course is to heighten your awareness of insurance fraud by describing who commits fraud, the types of fraud and to assist you in detecting

578 views • 34 slides
Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud

Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud

Prioritising the Fight Against Fraud: A Strategic Approach The Association of Certified Fraud Examiners (ACFE) is an international, professional organization dedicated to fighting fraud and white-collar crime . As fraud becomes increasingly more

373 views • 24 slides
12/6/2013 Detecting Fakes Image Forensics: Detecting Forged Photos 1.Detecting photorealistic

12/6/2013 Detecting Fakes Image Forensics: Detecting Forged Photos 1.Detecting photorealistic

12/6/2013 Detecting Fakes Image Forensics: Detecting Forged Photos 1.Detecting photorealistic graphics 2.Detecting manipulated images Photo manipulation is the application of image editing techniques to photographs in order to create an

306 views • 13 slides
Definition of Fraud Fraud is an intentional deception made for personal gain Fraud Triangle

Definition of Fraud Fraud is an intentional deception made for personal gain Fraud Triangle

MMTCTA Fraud Internal Controls Presented By Ron Smith &amp; Greg Chabot, RHR Smith &amp; Co. May 14, 2015 About RHR Smith &amp; Company: RHR does approx 130 of Maines 500 Municipalities In the past year RHR has Investigated 23+

506 views • 39 slides
Cloak of Visibility: Detecting When Machines Browse a Different Web Luca Invernizzi *, Kurt

Cloak of Visibility: Detecting When Machines Browse a Different Web Luca Invernizzi *, Kurt

Cloak of Visibility: Detecting When Machines Browse a Different Web Luca Invernizzi *, Kurt Thomas*, Alexandros Kapravelos , Oxana Comanescu*, Jean-Michel Picod*, and Elie Bursztein* * Google - Anti-fraud and abuse research North Carolina

409 views • 30 slides
Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &amp;

Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &amp;

Medicare ACOs: Fraud and Abuse Perspectives This webinar is brought to you by the Fraud &amp; Abuse (Fraud) Practice Group and the Accountable Care Organization Task Force (ACO TF) (a joint endeavor of the Antitrust; Fraud and Abuse; Health

408 views • 26 slides
The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager

The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager

The Role of Internal Controls in the Fight Against Fraud A Tale of Fraud! Payroll manager makes $2.25MM disappear! It must be Magic! Fraud Statistics 5% of GWP lost to employee fraud &amp; abuse More than $3.5 Trillion per year

559 views • 44 slides
Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud

Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud

Fraud in the NHS Iain Flinn Counter Fraud Specialist March 2011 Areas Susceptible to Fraud Procurement Qualifications Sickness / Attendance / Time Recording Ghosts Salary payments Prescriptions Health Tourists

619 views • 9 slides
Sales Tax Affiliate Nexus Stemming From Sales Tax Affiliate Nexus Stemming From Online Business

Sales Tax Affiliate Nexus Stemming From Sales Tax Affiliate Nexus Stemming From Online Business

Presenting a live 110 minute webinar with interactive Q&amp;A Sales Tax Affiliate Nexus Stemming From Sales Tax Affiliate Nexus Stemming From Online Business Presence Meeting the Challenges of Tough State Laws and Court Rulings THURSDAY,

921 views • 79 slides
The Work of the New Zealand Serious Fraud Office White Collar Crime and Serious Fraud Conference

The Work of the New Zealand Serious Fraud Office White Collar Crime and Serious Fraud Conference

The Work of the New Zealand Serious Fraud Office White Collar Crime and Serious Fraud Conference AUCKLAND 2 JULY 2010 WHAT IS THE SERIOUS FRAUD OFFICE? SFO: An Overview Mandate investigate and prosecute serious or complex fraud Part 1 -

421 views • 13 slides
Risky Business: How Companies Fall Victim to Fraud Presented by: Tony Okray Julie Latchaw

Risky Business: How Companies Fall Victim to Fraud Presented by: Tony Okray Julie Latchaw

6/5/2016 Risky Business: How Companies Fall Victim to Fraud Presented by: Tony Okray Julie Latchaw Julie Lombardi Member FDIC Agenda: Fraud Statistics Fun With Numbers Check Fraud &amp; ACH Fraud Your Role in Preventing Fraud Fraud

238 views • 13 slides
Vascular Institute Affiliate Network: 2018 Update Gill Heart and Vascular Institute Affiliate

Vascular Institute Affiliate Network: 2018 Update Gill Heart and Vascular Institute Affiliate

Gill Heart and Vascular Institute Affiliate Network: 2018 Update Gill Heart and Vascular Institute Affiliate Network 4 Years Welcome Affiliates! New Affiliate Welcome! Welcome Special Guests! GHVI Affiliate Meeting Meeting agenda Gill

821 views • 17 slides

More recommend