Click fraud glossary
A-C

Click jacking

Clickjacking is type of advertising fraud where attackers trick users into clicking something different from what they think they're clicking. The deceptive practice uses multiple transparent or opaque layers to hide the real content. Users believe they are interacting with a legitimate webpage element, but are actually clicking on something completely different.

How clickjacking works

Attackers create an invisible layer that sits on top of a legitimate webpage. This invisible layer contains buttons or links that perform unwanted actions. The user sees what appears to be a normal website element, like a "Play Video" button. But when clicked, they're actually interacting with the hidden malicious element.

Common clickjacking tactics

Clickjackers use several methods to deceive users and advertisers:

  • Invisible overlay frames that capture clicks meant for legitimate content
  • Tiny 1x1 pixel buttons that are nearly impossible to see
  • Fake play buttons on video thumbnails that lead to fraudulent sites
  • Deceptive advertising elements that generate fake clicks

Impact on advertising

For advertisers, clickjacking can drain ad budgets through fake clicks. These fraudulent interactions appear legitimate in analytics tools. This makes it harder to detect the ad fraud.

Advertisers often pay per click, so clickjacking directly impacts their bottom line. A single clickjacking attack can generate thousands of fake clicks in minutes.

Protection against clickjacking

Website owners can implement several security measures to prevent clickjacking:

  • X-Frame-Options HTTP headers to control how pages can be framed
  • Content Security Policy (CSP) directives
  • Frame-busting JavaScript code
  • Click fraud detection software that identifies suspicious patterns

Why it matters for digital advertising

Clickjacking threatens the integrity of online advertising metrics. It creates artificial engagement that skews campaign data. This makes it harder for advertisers to measure real ROI.

The practice also erodes trust in digital advertising platforms. Users become wary of clicking ads. Advertisers question the validity of their click data.

Other terms

Anti-detect browser
Ad hiding
Competitor click fraud
Click injection
Click flooding

News & insight

Visit blog
Arrow Right Icon
Ad fraud

Why is keyword targeting for Google Display Network not working?

We dig into a recent Reddit post where a user complains that keyword targeting for Google Display should be showing up ONLY on pages that have their specific keywords on them. Other users had some good ideas.
Ad fraud

5 common click fraud myths — busted!

Click fraud is a subject that is only really coming to light in recent years. With CPC bids getting higher every year, click fraud is growing. We've compiled 5 common myths, debunking and exploring each one in detail.
Analytics

Why do my user sessions not match my clicks? [Answered]

This helpful guide is for anyone struggling to match up clicks on ads with sessions recorded in their analytics. Surely they should just MATCH UP? Or maybe not, as we'll discover...
Complete guide to click fraud
Complete guide to browser fingerprinting
Next generation click-fraud protection platform
Get started
Product
Click fraud detectionClick fraud blockingMarketing channelsAnalytics & reportingFor agenciesPricingDocumentation
Compare
Click Guardian
ClickCease
ClickGUARD
ClickPatrol
Clixtell
Fraud Blocker
Lunio
TrafficGuard
More
Bot traffic statistics
Ad fraud statistics
Glossary
Company
Contact usTerms of usePrivacy policyCookie declaration
© Chalkboard Software Limited. Registered in England & Wales number 09192721.