What are sneaky redirects - attribution fraud - Impact
Close Technique Button

Web attribution fraud

Sneaky redirects

Redirecting is the act of sending a visitor to a different URL than the one they initially requested. While not all redirects are malicious, a bad actor can purchase a domain name that is a misspelled version of an advertiser’s domain. The malicious publisher will then redirect users who accidentally navigate to the misspelled domain to the advertiser’s site, effectively generating an illegitimate click. In this scenario, the user was actually organic and the advertiser should not have paid any affiliate for the click. Watch this video to see a sneaky redirect in action.

Technique Left Arrow 2
Technique Right Arrow

How they do it

  1. Malicious publisher owns a domain that is a common misspelling of an advertiser’s domain name and registers for that advertiser’s affiliate program
  2. User intends to visit that advertiser’s website but mistypes and enters the misspelled URL instead
  3. User goes to malicious publisher’s misspelled domain, which drops a cookie on user’s browser
  4. Malicious publisher promptly sends user to advertiser’s website with a 302 redirect
  5. User makes the purchase he originally set out to make
  6. Advertiser attributes credit to malicious publisher, even though user was going to make the purchase organically, and pays them a percentage of revenue
Sneaky redirects

Get in touch