Glossary

Agentic commerce refers to the rapidly emerging paradigm in online commerce wherein some or all of the shopping process is by intelligent computer programs called AI agents on behalf of their human users.

Agentic AI refers to artificial intelligence systems that are designed to independently carry out complex tasks with little or no human supervision. 

Learn what ad inventory is, how it’s vulnerable to ad fraud, and key strategies to protect it. Discover ways to safeguard ad inventory and improve campaign performance.

Bot management is a segment of software solutions that are put in place to mitigate business risks from bot attacks.

An attack profile is a group of malicious requests thought to be from the same attacker based on their characteristics and actions, within the context of bot management.

Audio fraud, a form of ad fraud where bots or low-quality traffic generate fake audio impressions, is misleading advertisers and wasting ad spend.

Application security is essential to protect software from attacks and data breaches. Learn how to identify, fix, and prevent security vulnerabilities in your applications with measures like code reviews and access controls.

Fighting malvertising isn’t always just about malicious ads. Understanding ad quality and how to filter out unwanted ads at scale is also important.

The term ad cloaking has been used to define a variety of ad attacks. But understanding a truly cloaked attack is key to protecting your publishing.

Account takeover (ATO) is a form of identity theft where cybercriminals gain access to user accounts. Learn how to prevent and respond to ATO attacks.

Bot detection is the process of distinguishing between bot and human activity, as well as between malicious and legitimate bots.

Bot management is a segment of software solutions that are put in place to mitigate business risks from bot attacks.

Bot mitigation is the process of reducing the risk of automated bot attacks and stopping them from abusing websites, mobile apps, and visitors.

When bots visit your website, they tax your bandwidth, skew your data, and put you at risk for fraud. Learn more about bot traffic to web and mobile apps and APIs.

A brute force attack occurs when cybercriminals use bots to try to guess and verify information such as passwords, credit card numbers, and promo codes.

A bot is a software application programmed to execute automated tasks on the web. Bots imitate human behavior, but conduct tasks at high speed and massive scale.

Brute force attack detection tools prevent unauthorized access by monitoring login attempts, bot behavior, and more. Learn how companies can mitigate risks and how HUMAN stops these attacks.

Bot detection tools are solutions made to identify bots among web traffic. Learn how these tools protect websites, applications, and data by distinguishing real users from automated threats.

CAPTCHA, born in the 90s, aimed to prevent malicious bots from spamming engines, forums, and forms. Here are alternatives for the modern detection era.

Learn about CTV fraud, where bad actors exploit connected TV ad networks through fake impressions and bot-driven traffic, leading to wasted ad spend and inaccurate metrics.

Credential stuffing is when bots attempt logins with stolen usernames and passwords. Validated credentials can be used to take over accounts and commit fraud.

Credential stuffing mitigation is a set of tools and strategies, like behavioral analysis, MFA, and rate-limiting, to prevent credential stuffing attacks.

Content security policy (CSP) is a capability to limit the threat of cross-site scripting (XSS) attacks.

Content scraping is the automated process of copying data from websites, often without permission, to republish or misuse it elsewhere, potentially harming the original content creator’s traffic and SEO.

Client-side security means protecting user data from cyberattacks through vulnerabilities in websites and apps through various device security measures.

Click fraud occurs when bots or fake users artificially inflate ad clicks or content engagement. Learn the types of click fraud and its business impact.

Discover how click fraud protection software works to detect and flag fraudulent clicks in real-time using machine learning and behavioral analysis.

Learn what click fraud prevention is, the challenges click fraud brings to companies and the benefits of modern click fraud prevention solutions.

The California Consumer Privacy Act (CCPA) is a state law that protects citizens of California from private data abuses and exposures.

CAPTCHAs are a type of challenge–response test used on websites across the internet to determine whether a user is a human or a bot.

Bad actors can bypass traditional security measures—such as CAPTCHA, multi-factor authentication (MFA), security questions—to take over an account on your site.

Learn about the most important steps for cyber threat mitigation and the strategies you need to make sure you don’t fall victim to an attack.

In carding attacks, cybercriminals use bots to make fraudulent purchases with stolen credit cards, debit cards, or gift cards.

Digital skimming occurs when cybercriminals use malicious script injections to steal credit card information from customers to your online store.

Digital ad fraud is the practice of exploiting digital advertising systems to generate revenue illegitimately. Fraudsters use sophisticated bots to manipulate online advertising metrics, resulting in wasted ad spend and inaccurate performance data.

Understand the risks of data harvesting and how to shield your business from costly damage to customer loyalty, brand reputation, and sales.

Denial of inventory and scalping attacks harm e-commerce businesses. Learn how to prevent and respond to these threats with effective solutions.

A digital interactions is any activity that users perform online as well as systems and devices communicating with each other. Trillions of digital interactions happen every moment.

E-commerce security is a set of measures and tools to protect online businesses from cyber threats.

Formjacking happens when cybercriminals use malicious code injections to hijack your web forms and steal the data that your users submit.

Fake account creation is a growing problem for businesses. Learn how to detect and prevent fraudulent accounts with effective strategies and tools.

The General Data Protection Regulation (GDPR) is regulation that governs data protection and privacy in the European Union and the European Economic Area.

Learn more about heavy ads, the impact they have on publishers’ page load times and user experiences, and what you can do to stop them.

Learn how mobile ad fraud works, how it disrupts customer experience and the tools and techniques you can use to prevent it.

Internet safety involves practices and tools to protect personal data, devices, and well-being online, safeguarding against cyber threats like malware, scams, and breaches.

Using the right iFrame will depend on what level of protection you want and what kind of ads you will be running. Read this article to learn more.

Learn how bad actors exploit loyalty programs, attack types, mitigation, and solutions.

Learn how cybersecurity solutions can effectively prevent loyalty fraud, ensuring your business attracts and retains return customers without risking their trust.

Learn how mobile ad fraud works, how it disrupts customer experience and the tools and techniques you can use to prevent it.

Learn how mobile ad fraud works, how it disrupts customer experience and the tools and techniques you can use to prevent it.

The growing sophistication of malvertising threats can be challenging to prevent, stop, or predict in the programmatic ad ecosystem.

In Magecart attack, cybercriminals skim shoppers’ credit card data from online payment forms when they complete a transaction.

Learn about mobile SDK: definition, benefits, and challenges and how HUMAN offers SDK support for iOS, Android, and visionOS.

Cybercriminals are always looking for a lucrative payday through malvertising. Learn how to make them pay without reward.

Learn more about the methods anti-malvertising solutions offer for integrating their tools onto your website: creative wrapping and page-level scripts.

Learn what promotion abuse is, the most common examples, and how it affects everyone.

Programmatic ad buying automates digital ad purchases but also faces fraud risks. Learn how technology like HUMAN protects against ad fraud in real-time.

Personally identifiable information (PII) harvesting occurs when criminals manipulate your website forms to collect the PII that users submit.

Learn what PCI DSS is, how to achieve compliance, and how your client-side supply chain can put you at risk of unauthorized data exposure.

Password spraying is a stealthy account takeover tactic where attackers test common passwords across multiple accounts to gain unauthorized access.

Découvrez PCI DSS, comment être en conformité et comment votre chaîne d’approvisionnement côté client risque d’exposer des données non autorisées.

Secondary detection refers to the cybersecurity practice of identifying threats by analyzing aggregated data, after an initial detection event or decision has occurred.

Shadow code is any code introduced into an application without formal approval or security validation. Shadow code introduces risks to data privacy.

Web scraping, or content scraping, is the practice of using automated bots and web crawlers to extract content or data from third-party websites.

Skewed analytics results when fraudulent web traffic and automated interactions contaminate your data, which can lead to erroneous conclusions.

Supply chain attacks occur when cybercriminals infiltrate your site by attacking your third-party code vendors.

Steaming fraud refers to manipulative tactics that artificially inflate streaming metrics such as views, plays, and engagements on digital content platforms for streaming music, video, or live-streaming.

Running video ads can be profitable, but video stuffing may slow your site speed. Learn what this fraudulent tactic can do to your ad yield.

Web application security ensures the safety of online apps by protecting them against cyber threats like bot attacks, data theft, and unauthorized access.