Evasive Bots Driving Online Fraud: 2022 Report

According to the 2022 Imperva Bad Bot Report, bots accounted for almost 28% of global web traffic in 2021. The Imperva Threat Research team estimates that 27.7% of online traffic is bad bots. These bad bots are now more advanced and evasive than ever, mimicking human behavior in ways that make them harder to detect and prevent. Excerpts:

Bad bots are software applications that run automated tasks with malicious intent. They scrape data from sites without permission to reuse it and gain a competitive edge (e.g. pricing, inventory levels, proprietary content). They are used for scalping, the act of obtaining limited availability items to resell at a higher price. They can be used to create distributed denial of service (DDoS) attacks targeted at the network or the application. The truly nefarious ones undertake criminal activities, such as fraud and outright theft. Credential Stuffing to perform Account Takeover is a prominent tactic of bad bots.

Bad bot traffic continues to grow and hits record levels

  • Bad bot traffic accounted for a record-setting 27.7% of all global website traffic in 2021
  • Bot traffic accounted for 42.3% of all internet traffic in 2021
  • The top three most common bot attacks in 2021:
    • Account Takeover
    • Scraping
    • Scalping 

In 2021, Evasive Bad Bots accounted for the majority of bad bot traffic (65.6%). This breed of bot is a grouping of both moderate and advanced bad bots that can evade common defenses. They use the latest evasion techniques, including cycling through random IPs, entering through anonymous proxies, changing their identities, mimicking human behavior, delaying requests, and more.

Subscribe
Notify of
guest

2 Expert Comments
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Garret F. Grajek
InfoSec Expert
May 22, 2022 9:00 pm

It should alarm anyone who is involved in IT that 28% of the global resources for handling web traffic is going to handling bot traffic. Traffic that is malicious by nature – since denial of service is one of the tenants of the CIA principle: Confidentiality, Integrity and Availability. Enterprises have to realize this traffic is occurring and that its content is malicious by nature. And since many of the bots are carrying traffic that will eventually result in scans and vulnerability assessments – an enterprise must shore up their defenses. Given that over 65% of attacks will eventually use weakened credentials, an identity governance policy is paramount.

Last edited 6 months ago by Garret F. Grajek
John Gunn
John Gunn , CEO
InfoSec Expert
May 22, 2022 8:59 pm

Account takeover using stolen credentials remains the #1 threat to every organization and bots automate and speed up this process. Strong, effective, and convenient biometric authentication is essential to ensure security.

Last edited 6 months ago by John Gunn
Information Security Buzz
2
0
Would love your thoughts, please comment.x
()
x