|
|
|
|
| |
There are advertisement services all over the Internet that pay web sites for every 'unique' click. To make sure that they are not vulnerable to fraud they store every IP (the unique address given to you when you are connected) that has clicked on the advertisement. No IP that has clicked more than once will be counted (in a given time frame, usually 6-12hrs). Since this address cannot be easily changed, it usually provides a good protection scheme to prevent cheating.
This single IP checking scheme can now be bypassed, by using a tool such as the 'WebClicker'. This tool enables to easily bypass this anti-fraud mechanism using publicly available proxies. |
| |
Credit:
The tool that exploits this vulnerability can be downloaded from:
http://www.headstrong.de/cgi-bin/download.cgi?webclicker
The information has been provided by Moritz Bartl.
|
| |
Malicious web sites can now fraud online advertisers by using tools like WebClicker. This tools employs publicly available proxies to load & click on banners, and can generate a high volume of income due to the fact that advertisement systems will recognize every proxy as a single unique user clicking and not as a single IP initiating the fraud.
Update:
HeadStrong WebClicker v2.55 uses public available proxies to
emulate complete browser HTTP transfer to load and click ad banners.
Advertisement systems will recognize every proxy as a single unique user
clicking on your banner and thus increase the user payment.
Server administrators have to be aware of this heavy security hole, as
customers may use this program to earn hundreds of dollar a month! You as a
server administrator and software developer have the opportunity now to
test your own servers to improve protection and to detect possible cheating
schemes.
Changes: URL lists are now also stored in INI file, you can now add new
accounts and open accounts with different settings (useful for
multithreading), WC adds forged X-Forwarded-For and Accept-Language
headers, added context menu (copy/paste/insert) in URL and proxy lists,
several other small bugfixes.
|
|
|
|
|
|
|
|
|
|
