Domain spoofing on open exchange programmatic campaigns
Domain spoofing is the defining fraud risk of open exchange RTB, where fraudulent publishers misrepresent low-quality inventory as premium publisher placements in the bid stream your DSP buys against.
Trusted by leading brands worldwide
Domain spoofing is structurally enabled by the open exchange RTB architecture
Domain spoofing is possible on the open exchange because the RTB bid request contains self-declared publisher information that the auction infrastructure cannot verify in the milliseconds available for auction processing. A fraudulent publisher declares a premium news domain in the bid request. Your DSP reads that declaration, runs it through brand safety filters, approves the bid, and pays a premium CPM. The impression is actually served on a bot farm with no relation to the declared publisher. Your campaign report shows delivery against premium inventory that your ads never actually reached.
Ads.txt was introduced specifically to address domain spoofing by establishing an authoritative list of sellers authorised to sell a domain's inventory. It has materially reduced the problem, but significant gaps remain. Many publishers maintain incomplete or outdated ads.txt files. Buyer enforcement at the impression level is inconsistent. Fraudulent operators continuously adapt their techniques to exploit gaps between what ads.txt declares and what the bid stream actually enforces. Active impression-level monitoring remains essential for open exchange advertisers who want genuine protection rather than a false sense of security from ads.txt compliance.
How Tapper stops domain spoofing on Display open exchange
Three steps from connection to clean campaign data, no engineering required.
01
Connect your DSP to Tapper for impression-level monitoring
Tapper integrates with your demand-side platform and monitors every bid request and impression event in your open exchange buy, verifying declared publisher domains against authorised seller records.
02
Spoofed domains identified at the impression level before spend occurs
Declared publisher domains are cross-referenced against ads.txt records, known spoofing patterns, and traffic quality signals to identify misrepresented inventory before your budget is committed to fraudulent placements.
03
Spoofed inventory suppressed from your open exchange buying
Identified spoofed inventory sources are added to suppression lists applied to your ongoing open exchange buying, with campaign reports corrected to reflect delivery against genuine publisher inventory.
Domain spoofing on Display open exchange by the numbers
Data from Tapper's platform analysis and published industry research.
3,400+
Unique spoofed domains detected on the open exchange per month
$84B
Lost globally to ad fraud annually
3x
Higher domain spoofing rate on open exchange vs private marketplace
20-40%
Average IVT rate on open exchange programmatic
Tapper vs Standard Brand Safety Tools
See exactly where the gaps are, and why they matter to your open exchange performance.
Domain spoofing detection on open exchange
Impression-level domain verification and real-time flagging
Post-bid analysis only, no pre-spend protection
Ads.txt gap coverage
Active monitoring beyond ads.txt limitations
Relies on ads.txt enforcement alone
Spoofed inventory suppression
Automated and instant per identified source
Manual blocklist updates required
Campaign report accuracy
Corrects delivery data to reflect genuine publisher inventory
Reports reflect declared domain including spoofed entries
Trusted by industry leaders
See how companies are protecting their ad budgets and improving ROI with Tapper.
“Tapper played a key role in improving the efficiency of Du's performance marketing activity by addressing traffic quality issues within campaigns. Following implementation, Du achieved a 13% reduction in CPA and an 8.6% increase in order rate, demonstrating a clear improvement in conversion quality and overall campaign effectiveness.”
Joseph Elbcherrawy
Client Leadership Director, Mindshare, a WPP Media Brand
“During our Tapper trial for INFINITI, we uncovered low-quality traffic that wasn't visible inside the platforms. Removing it delivered a 14% uplift in conversions and an 11.4% reduction in CPA - a meaningful efficiency gain for INFINITI's 2026 growth plans.”
David Barnes
Data & Technology Lead, Omnicom Group
“With Tapper's protection we were able to identify and block invalid clicks in real time. The impact was immediate as our cost per acquisition dropped by 30% and ROAS improved significantly. More importantly, Tapper gives us the confidence that our campaigns are reaching genuine customers, which makes it truly invaluable.”
Dimitris Bakas
Senior Performance Marketing, Public Group
“We started using Tapper to get better visibility on where our clicks were coming from, and ended up cutting wasted spend by over 12%. The performance uplift was clear, and for the first time, we could trust the numbers we were seeing. It's a total game-changer for campaign integrity.”
Stuart Parkin
Director of Operations, Regit
“Tapper's blocking technology purifies our paid media traffic which roughly equates to a 36x return against its subscription costs. It's certainly one of the easiest-to-implement tools in our entire marketing stack.”
Reno Mindemann
Head of Growth, Kama Capital
“We've been using Tapper for over a year now, and it has become a core part of how we run paid media. Invalid traffic was always something we knew existed but couldn't really act on. Tapper changed that. We're now saving up to $50K per year, and on PureSquare specifically, we saw around a 20% decrease in CPA. Based on these results, we decided to roll it out across other ventures under Disrupt as well.”
Nurkan Kirkan
GTM Consultant / Paid Growth, Disrupt.com
Trusted by leading brands worldwide
Frequently asked questions
Everything about domain spoofing on Display & Programmatic open exchange.
The open exchange bid stream processes self-declared publisher information with no real-time verification capability. Any publisher can declare any domain in a bid request, and the millisecond auction window means buyers must trust declared data rather than verify it independently. PMP and programmatic guaranteed deals involve direct publisher relationships that make domain spoofing attacks significantly harder to execute at scale.
Ads.txt significantly reduces domain spoofing by creating a public record of which sellers are authorised to sell a publisher's inventory, but it has real limitations. Not all publishers maintain current and complete ads.txt files. Buyer enforcement at the impression level is inconsistent. Fraudulent operators continuously adapt to exploit gaps between ads.txt declarations and actual bid-stream enforcement. Active impression-level monitoring is necessary to catch what ads.txt misses.
Standard brand safety tools screen the declared publisher domain against content adjacency criteria and brand safety categories. When that declared domain is spoofed, the brand safety check passes for a publisher your ad never actually ran on. Your ad may be served adjacent to harmful content on the real serving domain while your reporting shows a brand-safe premium publisher placement, giving you a false sense of brand safety that does not reflect actual delivery.
Other fraud types on Display & Programmatic open exchange
Open exchange campaigns face multiple fraud threats. Tapper protects against all of them.
Stop domain spoofing on your Display open exchange
Book a demo and we will show you exactly what Tapper would block on your account, before you commit to anything.