Emerging Fraud Threat: How To Protect Your Business From Traffic Siphoning

How to protect yourself from the new wave of traffic siphoning fraud. Quick Summary: Bad actors are using stolen passwords to access customer  accounts, and then using the API key from those accounts to siphon off small portions of traffic.
By
Michael Cole
March 29, 2023

Quick Summary: Bad actors are using stolen passwords to access customer accounts, and then using the API keys from those accounts to siphon off small portions of traffic.

Please note: There has been no security breach on Everflow’s side. 

How the fraud actually works: Using the API key, the bad actors are changing the destination URL for three to five minutes every hour to send traffic to their offers, instead of the original destination.

This is likely a widespread issue: Our monitoring caught this fraud tactic quickly with only a handful of Everflow clients impacted; however, our investigation and conversations with customers confirm that this fraud tactic is being used to steal significant volumes of traffic from networks and agencies across non-Everflow platforms.

We advise all networks and agencies to investigate their campaigns for suspicious manipulations of their destination URLs, and to take the security precautions below.

The full story: 

In December, Everflow’s internal monitoring detected spoofed login activity for several customers. We notified the customers and confirmed that this activity was caused by external bad actors. Further research concluded that the unauthorized access was associated with users reusing passwords across multiple websites, and that password information had been stolen in a breach of one of those websites (not Everflow).

The bad actors were using these stolen passwords to access customers’ accounts, obtain their API keys, and then use the API to siphon off portions of traffic to their own offers. 

This issue was caught quickly and promptly resolved for our customers.

Further investigation by our customers confirmed that similar fraud techniques had also been used to steal traffic from their partners who were using non-Everflow tracking platforms. Please be advised and stay vigilant with your traffic and partners.

Here is how you can protect yourself from this issue:

  1. Turn on 2FA on all Everflow user accounts. This will stop unauthorized activity regardless of the password being compromised.
  2. Avoid using the same password across multiple websites. These websites can be breached without you knowing, leading to the passwords being stolen and re-sold on the dark web.
  3. Use unique passwords for each user to avoid shared passwords from being exploited.

Quickly catching this new fraud tactic and bringing it to our customers' attention is further proof of Everflow’s commitment to provide the best service and experience for our customers. 

If you have further questions on this issue, please reach out to your account manager or email privacy@everflow.io.

Bonus FYI:

Could Everflow’s user passwords be breached? The answer is no! Every password is automatically hashed and salted, which means they can’t be accessed by anyone (including us).

Michael Cole
February 12, 2024

Subscribe To Our Newsletter

Get weekly updates on upcoming fireside chats, events, parties, and exciting announcements from our side!

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Related posts

View all
Fireside Chat

Everflow’s Playbook To Making Referrals Your Top Growth Channel

In 2023, the team at Everflow decided to revamp our already successful referral program. Through in-house resources and no additional upfront spend, enhancements to our referral program generated results like 120% YOY growth in quality leads and a 3.3X faster closing rate. These enhancements are not unique to Everflow, as we will show you in this fireside how your SaaS business can achieve similar success following our step-by-step formula.
Fireside Chat

Mastering Incrementality: Measuring the Effectiveness of Your Affiliate Program

In the dynamic world of marketing, one pressing question often looms over affiliate campaigns: Are they truly making a difference? With an abundance of data at our fingertips, deciphering which affiliate partners drive genuine incremental revenue can pose a significant challenge. Join us for an illuminating webinar led by PartnerCentric Founder & CEO Stephanie Harris and VP of Product & Innovation, Tom Rathbone, where we'll delve into the intricacies of determining the true impact of your affiliate marketing initiatives. Gain invaluable insights into identifying the partners and partner categories (such as content, BNPL, loyalty, coupon, technology, mobile, and media buyers) that drive tangible and incremental value-add to your bottom line.
Fireside Chat

How Brands & Offer Owners Can Retain More Affiliates To Improve Profitability Through CRO

As traffic prices increase, brands and offer owners are struggling more than ever to remain profitable. This is where Conversion Rate Optimization (CRO) comes in, offering brands a way to make more profit from their existing traffic. Join Conscious Partners to learn the exact CRO strategies they have tested on $500M in traffic. Discover how you can leverage CRO to retain affiliates, increase profits, and unlock huge scale with your company.
View all

Ready To Scale Your Growth?

Start tracking every partnership and channel, analyze what delivers revenue and engagement, and consolidate your growth efforts.

Transparent Pricing Tiers

Unlimited Seats & Access

World Class Support

Book DemoGet Pricing Quote