Domain Spoofing
The fake address on the invoice — junk inventory sold under premium names, and the published-list fix that caught most of it.
- Term
- Domain Spoofing
- Lies in
- The bid request's claimed domain
- Sells
- Junk placements at premium prices
- Countered by
- ads.txt and sellers.json (IAB)
Forms & parts of speech
Definition in plain terms
Domain spoofing is ad fraud in which inventory is misrepresented in the programmatic bid stream: a BID REQUEST claims the impression sits on a premium domain — a national newspaper, a famous publisher — while the ad actually renders on a junk site, an invisible player, or nowhere human at all. Buyers pay premium-context prices for placements the premium publisher never saw a cent of; the publisher's name is stolen twice, once for the price and once for the blame.
The mechanics
The fraud exploits programmatic's chain of self-reported metadata: the domain field in a bid request was, for years, whatever the seller typed, and long reseller chains gave false declarations places to hide. The headline case made the stakes vivid — the Methbot operation (exposed 2016) ran bot traffic against spoofed premium video inventory at industrial scale, monetizing fake impressions on real publishers' names. The structural fix is published truth: ads.txt (IAB, 2017) lets every publisher post, at a known URL, the exhaustive list of sellers authorized to sell its inventory, so buyers can drop any bid request whose seller isn't on the claimed domain's list; app-ads.txt extends the pattern to apps, and sellers.json plus SupplyChain object let buyers trace who touched an impression end to end. Adoption made naive spoofing mostly a solved problem on checked paths — the operative word being checked: the buyer-side disciplines are enforcing ads.txt validation in the DSP (it is a setting and a practice, not physics), preferring direct and short supply paths (the SUPPLY-PATH logic from the DSP entry), reconciling won impressions against log-level domains, and treating too-cheap premium inventory as the tell it always was. The fraud family adapted around the fix — misrepresentation now lives more in MFA-site quality games and in-app bundle tricks than raw domain lies — which keeps verification vendors and log audits in the standing toolkit.
When it matters
Domain spoofing matters to any buyer of open-exchange programmatic, where the bid stream's claims are the product description — and the cheaper the 'premium' inventory, the more the description deserves suspicion. It matters to publishers too: spoofed names erode the premium their real inventory commands. The discipline is built-in verification: ads.txt enforcement on, supply paths short and audited, log-level reconciliation between what was claimed and where ads ran, and the standing price-reality check — premium context at junk prices is usually junk wearing a costume.
Synonyms & antonyms
Synonyms
Antonyms
Origin & history
Domain spoofing flourished in programmatic's self-declared bid streams and peaked publicly with 2016's Methbot exposure — industrial bot traffic monetized on spoofed premium video. The IAB's ads.txt (2017), app-ads.txt, and sellers.json answered with published authorization, converting the lie from undetectable to merely unchecked.
Etymology: source.
Usage trends
Search interest for this term over the last five years:
Common questions
- What is domain spoofing?
- Ad fraud where bid requests claim premium domains while ads actually render on junk sites — buyers pay premium prices for placements the named publisher never hosted or earned.
- How does ads.txt stop domain spoofing?
- Publishers publish the exhaustive list of authorized sellers at a known URL; buyers drop bids from sellers absent on the claimed domain's list — making naive spoofing detectable pre-bid, where enforcement is actually on.
- How do buyers protect against inventory misrepresentation?
- Enforce ads.txt/app-ads.txt validation, shorten and audit supply paths, reconcile log-level render domains against claims, and treat premium context at junk prices as the tell it is.
Related tools & calculators
- toolCAC calculator
- toolLTV:CAC calculator
Resources & people to follow
- referenceIAB Tech Lab — ads.txt
- referenceMethbot exposure reporting (White Ops, 2016)
- referenceRGM analysis — when premium context costs junk prices, the price is telling the truth
Curated, non-competitor resources verified per term.
Related training
- modulePerformance marketing
Disciplines
Areas of marketing where domain spoofing is a core concern: