Assaults on dangerous bots goal cell engines like google in France

Bad bots are software applications that perform automated tasks with malicious intent. Financial services were the most targeted sector (34.6%), followed by travel (23.2%).

Bad bots are often the first indicator of online fraud and pose a risk to digital companies as well as their customers. Businesses cannot overlook the impact of malicious robot activity, as it contributes to compromising multiple accounts, increasing infrastructure and support costs, draining users, and degrading online services.

They accounted for a record 27.7% of total global website traffic in 2021, compared to 25.6% in 2020. The three most common bot attacks were account retrieval (ATO), screen scraping and content scalping. obtaining items of limited availability and reselling them at full price. Imperva publishes its ninth annual report on in-depth analysis of bot traffic on the Internet. In France, web traffic is segmented by user type: 25.4% bad bots, 7.1% good bots and 67.5% people.

  • As for the distribution of bot sophistication – 73.3% are advanced, 11.3% moderate and 15.4% simple.
  • France is the third country hit by bad bots after the United States and Singapore.
  • Last summer, on the occasion of the Tour de France, the activity of robots in sports betting and other gambling sites increased by 52% at the time of departure.
  • This traffic consisted mainly of comment bots, whose traffic increased by 62%.

Bad bots allow abuse, abuse and high-speed attacks on websites, mobile applications and APIs. Successful attacks can lead to theft of personal information, credit card information and loyalty points. For organizations, automated online abuse and fraud contribute to non-compliance with data, privacy and transaction regulations. The turnover of bad bots is growing as companies invest in improving the online user experience. This results in more digital services, new online features and the development of large API ecosystems. Unfortunately, this series of new access points is an ideal target for automated attacks by malicious bots.

The scale of attacks by sophisticated bad bots was most noticeable in the travel (34.2%), retail (33.8%) and financial services (8.8%) sectors in 2021. These sectors remain the main targets due to the valuable personal data behind which they store portals. to log users on their websites and mobile applications.

A mobile phone is a desirable cover

Bad bots continue to mimic popular web browsers, trying to track legitimate users ’search patterns making their requests look like they were generated by a legitimate user browsing the web, hoping to avoid detection. In 2021, Chrome is again the best choice. As more people browse the web via mobile devices, the use of mobile devices with browsers such as Mobile Safari and Mobile Chrome is growing, more and more bad bots are using them as cover (35%). We also see an increase in the percentage of attacks launched by mobile ISPs (27%). The percentage of bad bots deployed from AWS increased from 10.8% in 2020 to 7.95% in 2021.

Data centers continue to drive most of the bad bot traffic (45.1%), while maintaining the downward trend compared to last year (54%). The number of bad bots in private ISPs decreased slightly, from 30.9% to 27.7%. The popularity of mobile ISPs rose sharply in 2021, almost doubling the amount of traffic from them. They accounted for 27.2% of turnover compared to 15.1% in 2020.

To protect yourself

The report shows that stopping bot traffic starts by identifying potential risks to your website. For example, marketing and e-commerce campaigns bring more bots. Why? Because launching products in limited quantities and high demand will attract bad bots. Whether it’s a highly sought-after pair of sneakers, a next-generation gaming console or a limited edition collector’s item, announce the date and time of your desired product launch and bots will be there to get it first 🙂 Understanding how your site can become a target is key for a successful bot management strategy.

To reduce vulnerabilities on mobile devices, organizations must protect exposed APIs and mobile applications, not just your website, and share blocking information between systems. Protecting your website is only part of the solution, don’t forget the other paths that lead to your web applications and data.

As a web browser user, keep up to date with your browser versions.

Leave a Comment