Feeds

eBay sues business partners over alleged cookie stuffing

Stuff this

Reducing the cost and complexity of web vulnerability management

Internet auction site eBay is suing some of its business partners for 'cookie stuffing', a kind of advertising fraud. It claims partner sites are pretending that users have clicked on eBay ads when they have not.

eBay pays other site owners to advertise its services. The site owners, or affiliates, are only paid, though, when someone clicks on the advert and takes a revenue generating action on eBay within a certain period of time. That could be signing up to the site or buying or selling an item. The activity of users is tracked by cookies, small text files stored within web browsers by the sites that are visited.

eBay has accused Digital Point Solutions (DPS) and Kessler's Flying Circus (KFC) of secretly redirecting web users' computers to eBay, where an eBay cookie would be placed in the user's browser.

That activity would "wrongly associate future revenue actions, if any, by that user with DPS or KFC," said eBay's suit.

The activity makes it look as though the user has clicked on a DPS or KFC ad so that if they do engage in eBay transactions those companies will be paid a fee by eBay.

"DPS or KFC would receive payment for actions by users who had not been referred to eBay by [their] advertisements, thereby damaging eBay," said the suit.

The suit outlined quite sophisticated techniques. It said that to avoid detection, the companies had never cookie-stuffed the same computer twice because that would increase the chances of detection by eBay.

It also claimed that the stuffing never took place in San Jose or Santa Barbara, where eBay and the company that ran its affiliate marketing programme Commission Junction (CJ) were located. "The purpose of this action was to evade efforts by eBay and/or CJ to detect the cookie stuffing mechanism if they attempted to observe the wrongdoing from their normal places of business," it said.

Though eBay does not say how much it has lost through the alleged fraud, it said that it has paid out to DPS and KFC on "a substantial number of Revenue Actions that were in no way related to referral of any user by either DPS's or KFC's advertisements and for which neither DPS nor KFC were due compensation".

EBay has asked the US District Court for the District of Northern California for an injuction to stop DPS and KFC from engaging in the cookie stuffing, as well as a return of all the money earned through the alleged scheme. It has also asked for punitive damages and treble damages against some of the defendants.

Copyright © 2008, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Security and trust: The backbone of doing business over the internet

More from The Register

next story
Phones 4u slips into administration after EE cuts ties with Brit mobe retailer
More than 5,500 jobs could be axed if rescue mission fails
JINGS! Microsoft Bing called Scots indyref RIGHT!
Redmond sporran metrics get one in the ten ring
Driving with an Apple Watch could land you with a £100 FINE
Bad news for tech-addicted fanbois behind the wheel
Murdoch to Europe: Inflict MORE PAIN on Google, please
'Platform for piracy' must be punished, or it'll kill us in FIVE YEARS
Phones 4u website DIES as wounded mobe retailer struggles to stay above water
Founder blames 'ruthless network partners' for implosion
Found inside ISIS terror chap's laptop: CELINE DION tunes
REPORT: Stash of terrorist material found in Syria Dell box
Sony says year's losses will be FOUR TIMES DEEPER than thought
Losses of more than $2 BILLION loom over troubled Japanese corp
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.