|
|
|
|
|
|
by Macha
3219 days ago
|
|
|
As an example, I'm currently diagnosing an issue where an ad refuses to play in our player as it incorrectly identifies itself as being adblocked. We load the advertiser provided ad (really a DoubleVerify fraud protection module) which loads a custom video player which eventually loads the advertiser's media file. The DoubleVerify script is downloading a bootstrap JavaScript file from their server, which then randomly chooses some other JavaScript to eval to check for whatever they think indicates fraud. It's this JavaScript, dynamically downloaded from their server (possibly even dynamically generated) that thinks our ad player is an ad blocker. And that's just diagnosing a bug, now imagine if you were trying to find some malicious JS. |
|
|
VPAID 3.0 (or is it 4.0?) has some proposals to fix this. It makes fraud analysis a first class citizen of the spec, sort of like companion ads. This allows them to be downloaded separately, as well as cached.