Netacea research reveals the high cost of unwanted bot traffic
Netacea, the bot detection and mitigation specialist, announced results from a new report that reveals the high price that businesses pay because of bot traffic.
According to survey respondents, automated bots operated by malicious actors cost businesses an average of 3.6% of their annual revenue. For the 25% worst affected businesses, this equates to at least a quarter of a billion dollars ($250 million) every year.
Recommendedย ITechย News: 70% of Developers Concerned About Data Breach Due to Poor Access Controls, build.security Finds
The report,ย The Bot Management Review: What are bots costing your business?, surveyed 440 businesses across the travel, entertainment, eCommerce, financial services and telecoms sectors in the United States and the UK. It found that every sector had a substantial bot problem, with two-thirds of businesses detecting website attacks. 46% of respondents reported mobile apps had been attacked, and 23%โmostly in the financial servicesโsaid bots had attacked their APIs.
โLast year, a particularly tough one for legitimate businesses already operating with razor-thin margins thanks to an economic slump, was a bumper year for those who use bots to leech off of those businessesโespecially from bad actors who looked to take advantage of a significant shift to online working and retail,โ said Andy Still, CTO, Netacea.
Recommendedย ITechย News: Qarbon Aerospace Selects Deltek to Support its Digital Transformation
While scalper botsโwhich automate the purchase of inventory such as game consoles and other limited availability goods faster than is possible for any legitimate userโcontinue to dominate headlines in 2021, businesses have been affected by all types of bots. These includeย account checker botsย which use stolen usernames and passwords to take over accounts,ย sniper botsย that monitor activity and swoop in at the last moment, and scraper bots that extract content and data from websites.
The Netacea research also uncovered:
- Over 80% of businesses reported that customer satisfaction had been negatively affected by bot activity, in particular scalper and sniper bots.
- Only around 5% of security budgets are dedicated to bot mitigation, though for larger firms itโs a little higher, at up to 20%.
- Account checker bots are the most popular form of bot attacks, taking advantage of data breaches and leaked passwords to compromise customer accounts.
Most worrying is the time it takes to discover attacks. On average, more than 14 weeks pass between a successful attack and its detection, making it difficult to limit the damage done to a businessโs customer satisfaction, reputation, and bottom line.
Still said: โWhile there is a greater awareness of the threat than in previous years, only 5% of security budgets are being used to target the problem. Businesses need to realise that bots are not a mere nuisance, but a genuine security threatโespecially when a business is already struggling because of other factors.โ
Netaceaโs previousย researchย around the Genesis Market, an underground marketplace for stolen credentials, shows how sophisticated the industry is becoming. Those operating bots do so at a professional level, with consultants, help desks and highly specialised infrastructure providers accessible through covert forums, making bots widely available.
Recommendedย ITechย News: Cybrary and Degreed Join Forces to Deliver Integrated Cybersecurity Learning Experiences
