BAD ACTORS
CAN’T HIDE
FROM US

A technique attackers use to force visitors onto an unknown site where they may be infected with malware or shown a fake ad that collects personal information.

A type of online scam where a criminal disguises themselves as a legitimate and trusted advertiser in order to steal sensitive information from the user.

The process of compressing or "stuffing," one or more normal size ads into a single 1x1 pixel frame on a publisher's site. The ad becomes virtually invisible to the user but still triggers an impression with every visitor that lands on the site.

Misleading, false or fraudulent messaging in advertising designed to steal money, personal information or both from victims.

Landing page or website malware is software designed for malicious purposes: to allow attackers to evade detection or gain unauthorized access to a compromised environment. Common types include: injected SPAM, credit card theft, or forced redirects.

AKA malicious cryptomining. cybercriminals hack into someone's business or personal computer, laptop, or mobile device and use its power and resources to mine for cryptocurrencies or steal cryptocurrency wallets owned by unsuspecting victims.

A type of "drive-by download" used to trick site visitors into downloading malware that gives the attacker remote access to their device.

When Hackers breach outdated servers and append malicious code to existing ads. This type of attack Confiant uncovered and labeled "Tag Barnacle" because the malicious code is attached to a previously valid Revive Ad server.

AKA: Hyperlink Auditing is an HTML standard that can be used to track clicks on web site links. This is done by creating special links that ping back to a specified URL when they are clicked on. It can be used to illegally track personal information.

When malvertisers layer multiple ads on top of one other, but only the top ad is visible. When the user clicks on the top ad, a click is registered for all the ads in the stack and advertisers end up paying for all those false ad impressions and clicks.

A form of cookieless tracking that users can’t easily discover or opt-out of.

A type of toolkit cybercriminals use to distribute malware or perform other malicious activities.