Yes, there will always be people that invest time/effort into figuring out how to exploit a system when there's money involved! I am sure there are still many exploits, it's just a matter of being more clever than the individual(s) that designed the system, and being willing to take the risk of indictment in case your scheme is discovered.

We stay pretty on top of things, and have a lot of data to look over for suspicious activity. Staying ahead of us means continually iterating methods, at which point, why not just get a job?

That said, it's nice to see this stuff separate the slick from the competent in the industry.

> at which point, why not just get a job?

Considering the pot could be somewhere in the several 100Ks per month (according to the article) range, which 'job' would that be?

I remember a buddy of mine telling me about doing affiliate advertising and using botnets to send fake click throughs to make money.

This was five or six years ago, but it looks like not much has changed.