Is SafeFrame 2.0 Enough To Protect My Website?

by Andrew Reed, on Nov 2, 2021 9:00:00 AM

Digital advertising has evolved quite a bit since SafeFrame’s initial release in 2014, meaning it was in long need of the facelift it received last year.

And while SafeFrame received necessary changes to remain relevant in today’s ecosystem, familiar vulnerabilities keep it far from a complete anti-malvertising solution. 

If you want to have a truly protected website, using SafeFrame in conjunction with more advanced anti-malvertising tools is the only way to effectively defend yourself from bad actors.

--Article Continues Below--

New call-to-action

--Article Continues Below--

New Updates and Familiar Foes

The main focus of SafeFrames 2.0 was to align with the new technologies and online trends that have appeared in the 6-year gap since its release. 

Most notably, to allow integration with header bidding and Prebid, MIRAD and shifts towards mobile advertising, and allow for simpler customization options since the release of IAB’s Open Measurements For The Web.

And while increases in security are mentioned as one of the goals of the update, the software still handles protection in the same manner, meaning the same vulnerabilities remain.

Cross-site scripting and other advanced forms of malvertising make it possible for bad actors to escape a browser’s sandboxing environment that SafeFame utilizes, allowing for the delivery of malicious payloads onto your webpages.

Once these bad ads are delivered, they will work to redirect users, scrape user data, and otherwise demolish your user experience. And keeping a safe space for your audience to enjoy your content is not only important to your overall security, but also to your reputation.

Frustrated users will view your site as a threat, and begin avoiding your content altogether, throwing a wrench in your site metrics and ad yield.

Time and resources will then be wasted as you are forced to manually track down and block harmful URLs, which bad actors will easily swap out and continue to serve you harmful ads.

SafeFrame is a necessary tool any online publisher should use. But it should be viewed as a baseline, DIY solution that requires additional and more advanced tools to effectively protect your site.


Protect Your Site With cleanAD

Teaming up with an ad security group is the best way to fight back against malicious advertisers. But even the largest security companies rely on tactics like blocklisting and verification that bad actors can easily circumvent.

At cleanAD, our unique script behaviorally blocks bad ads at run time, meaning you remain protected from any and all harmful JavaScript bad actors may be trying to inject into your site.

If you are experiencing ad attacks, and are watching your site metrics and ad revenue plummet, you can sign up for a free 14-day cleanAD trial here.

New call-to-action

Topics:MalvertisingMalvertising 101Malvertising Solutions

Our blog

Where businesses come to learn more about protecting the points of digital engagement with their customers, audiences and users.

Subscribe to Updates