Businesses Pay A High Price For Automated Bots

Uploaded on 2021-08-24 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The bot detection and mitigation specialist firm Netacea  has announced results from a new survey that reveals the high price that businesses pay because of bot traffic operated by malicious actors.
 
The report surveyed 440 businesses across the travel, entertainment, eCommerce, financial services and telecoms sectors in the United States and the UK and the results show that automated bots currently cost businesses an average of 3.6% of their annual revenue.  For the 25% worst affected businesses, this equates to at least a quarter of a billion dollars ($250 million) every year and that, on average, 14 weeks pass between a successful attack taking place and its detection.  
 
Netacea found that every sector had a substantial bot problem, with two-thirds of businesses detecting website attacks.
 
  • 46% of respondents reported mobile apps had been attacked.
  • 23%, mostly in the financial services, said bots had attacked their Application Programming Interface (API -  a type of software connecting to other pieces of software).
  • Businesses have been affected by all types of bots, including scalper bots which use stolen usernames and passwords to take over accounts, sniper bots that monitor activity and swoop in at the last moment, and scraper bots that extract content and data from websites.

The Netacea research also discovered:

  • Over 80% of businesses reported that customer satisfaction had been negatively affected by bot activity, in particular scalper and sniper bots.
  • Only around 5% of security budgets are dedicated to bot mitigation, although larger firms spend more. with up to 20%.being spent on dealing with bots.
  • Account checker bots are the most popular form of bot attacks, taking advantage of data breaches and leaked passwords to compromise customer accounts.
​“Last year...  was a bumper year for those who use bots to leech off of those businesses, especially from bad actors who looked to take advantage of a significant shift to online working and retail,” said Andy Still, CTO of Netacea“While there is a greater awareness of the threat than in previous years.... Businesses need to realise that bots are not a mere nuisance, but a genuine security threat, especially when a business is already struggling because of other factors.”
 
Netacea’s previous research on Dark Web markets for stolen credentials, shows how sophisticated the cyber crime industry is becoming. Those operating bots do so at a professional level, with consultants, help desks and highly specialised infrastructure providers accessible through covert forums, making bots widely available.
 
Netacea:   
 
You Might Also Read:
 
Banking Botnet Profit Share:
 
 
 
 
« Business Leaders Can Make Big Mistakes About Cyber Security
British Military Aim To Reduce Their Attack Surface »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Infoblox

Infoblox

Infoblox solutions help businesses automate complex network control functions to reduce costs, increase security and maximize uptime.

Axiomatics

Axiomatics

Axiomatics provides dynamic authorization and access control solutions to protect critical data assets.

CyberOne

CyberOne

CyberOne (formerly Comtact) offer a full stack cybersecurity service to ensure our customers understand the cyber maturity of their organisation.

CERT NZ

CERT NZ

CERT NZ supports businesses, organisations and individuals affected by cyber security incidents, and provide trusted and authoritative information and advice.

VKANSEE

VKANSEE

VKANSEE offer the world's thinnest optical fingerprint sensor for mobile device protection.

Gilbert + Tobin

Gilbert + Tobin

Gilbert + Tobin is an Australian corporate law firm serving clients throughout Australia, and around the world, on a broad range of legal issues including cyber security.

Agesic

Agesic

Agesic is an institution that leads the development of the Digital Government and the Information and Knowledge Society in Uruguay.

Accertify

Accertify

Accertify is a leading provider of fraud prevention, chargeback management, and payment gateway solutions.

DataExpert Singapore

DataExpert Singapore

DataExpert Singapore provide solutions and services in the areas of Digital Forensics, Data Recovery, Data Duplication, Data Degaussing & Wiping, Data Destruction, and IT Disposal.

Activu

Activu

Activu makes any information visible, collaborative, and proactive for people tasked with monitoring critical operations including network security.

McAfee

McAfee

McAfee is a worldwide leader in online protection. We’re focused on protecting people, not devices. Our solutions adapt to our customers’ needs and empower them to confidently experience life online.

EPIQ Infotech

EPIQ Infotech

EPIQ Infotech is a trusted consulting and implementation partner for Oracle JD Edwards and Amazon Web Services (AWS).

Multipoint Group

Multipoint Group

Multipoint is an information security and protection solutions company operating in the South EMEA region through value-added distribution channels.

Beazley Security

Beazley Security

Beazley Security is a global cyber security firm committed to helping clients develop true cyber resilience: the ability to withstand and recover from any cyberattack.

Qryptonic

Qryptonic

Qryptonic pioneers next-generation cybersecurity by leveraging the unparalleled capabilities of quantum computing to defend against evolving threats.

Validia

Validia

Validia is a deepfake cybersecurity service that provides proactive and reactive defense to the deepfake threat enterprises increasingly face with the rapid growth of generative AI.