Businesses Pay A High Price For Automated Bots

Uploaded on 2021-08-24 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The bot detection and mitigation specialist firm Netacea  has announced results from a new survey that reveals the high price that businesses pay because of bot traffic operated by malicious actors.
 
The report surveyed 440 businesses across the travel, entertainment, eCommerce, financial services and telecoms sectors in the United States and the UK and the results show that automated bots currently cost businesses an average of 3.6% of their annual revenue.  For the 25% worst affected businesses, this equates to at least a quarter of a billion dollars ($250 million) every year and that, on average, 14 weeks pass between a successful attack taking place and its detection.  
 
Netacea found that every sector had a substantial bot problem, with two-thirds of businesses detecting website attacks.
 
  • 46% of respondents reported mobile apps had been attacked.
  • 23%, mostly in the financial services, said bots had attacked their Application Programming Interface (API -  a type of software connecting to other pieces of software).
  • Businesses have been affected by all types of bots, including scalper bots which use stolen usernames and passwords to take over accounts, sniper bots that monitor activity and swoop in at the last moment, and scraper bots that extract content and data from websites.

The Netacea research also discovered:

  • Over 80% of businesses reported that customer satisfaction had been negatively affected by bot activity, in particular scalper and sniper bots.
  • Only around 5% of security budgets are dedicated to bot mitigation, although larger firms spend more. with up to 20%.being spent on dealing with bots.
  • Account checker bots are the most popular form of bot attacks, taking advantage of data breaches and leaked passwords to compromise customer accounts.
​“Last year...  was a bumper year for those who use bots to leech off of those businesses, especially from bad actors who looked to take advantage of a significant shift to online working and retail,” said Andy Still, CTO of Netacea“While there is a greater awareness of the threat than in previous years.... Businesses need to realise that bots are not a mere nuisance, but a genuine security threat, especially when a business is already struggling because of other factors.”
 
Netacea’s previous research on Dark Web markets for stolen credentials, shows how sophisticated the cyber crime industry is becoming. Those operating bots do so at a professional level, with consultants, help desks and highly specialised infrastructure providers accessible through covert forums, making bots widely available.
 
Netacea:   
 
You Might Also Read:
 
Banking Botnet Profit Share:
 
 
 
 
« Business Leaders Can Make Big Mistakes About Cyber Security
British Military Aim To Reduce Their Attack Surface »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Packet Storm

Packet Storm

Packet Storm is an online resource for security tools, whitepapers, exploits, and advisories on computer security issues.

ADF Solutions

ADF Solutions

ADF Solutions is a leading provider of digital forensic and media storage exploitation tools.

Israel National Cyber Directorate (INCD)

Israel National Cyber Directorate (INCD)

The Israel National Cyber Directorate is the national security and technological agency responsible for defending Israel’s national cyberspace and for establishing and advancing Israel’s cyber power.

NetFort

NetFort

NetFort provides software products to monitor activity on virtual and physical networks.

MedCrypt

MedCrypt

MedCrypt are a team of medical device experts focused on bringing modern cybersecurity features to the next generation of healthcare technology.

Logic Supply

Logic Supply

Logic Supply is a global industrial PC company focused on hardware for the IoT edge. We design highly-configurable computers engineered for reliability.

SAST

SAST

SAST provide Static Application Security Testing as a service based on SAST Tools.

Visible Statement

Visible Statement

Visible Statement is a computer-based delivery system designed to insure the retention and recall of your most important security training messages.

State Service of Special Communications & Information Protection of Ukraine (SSSCIP)

State Service of Special Communications & Information Protection of Ukraine (SSSCIP)

State Service of Special Communications and Information Protection is the technical security and intelligence service of Ukraine, under the control of the President of Ukraine.

Jamf

Jamf

Jamf is the only Apple Enterprise Management solution of scale that remotely connects, manages and protects Apple users, devices and services.

NARIS

NARIS

NARIS is the leading provider of an integrated Governance, Risk and Compliance platform called NARIS GRC.

Strac

Strac

Eliminate Personal Data Risks from your business. Our Dataless SaaS removes the need to manage sensitive data across web, mobile apps, servers and communication channels.

ADNET Technologies

ADNET Technologies

ADNET Technologies is a SOC 2, Type II Compliant IT management and cybersecurity firm.

Port-IT

Port-IT

Port-IT is a leading partner in cybersecurity solutions tailored for the maritime industry.

Health Sector Cybersecurity Coordination Center (HC3) - USA

Health Sector Cybersecurity Coordination Center (HC3) - USA

HC3 was created by the US Department of Health and Human Services to aid in the protection of vital, controlled, healthcare-related information.

Verax AI

Verax AI

Verax Protect helps security leaders mitigate the risks of using AI in the workplace by actively stopping the leakage of any sensitive data, harmful or malicious responses, and other security threats.