Businesses Pay A High Price For Automated Bots

Uploaded on 2021-08-24 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The bot detection and mitigation specialist firm Netacea  has announced results from a new survey that reveals the high price that businesses pay because of bot traffic operated by malicious actors.
 
The report surveyed 440 businesses across the travel, entertainment, eCommerce, financial services and telecoms sectors in the United States and the UK and the results show that automated bots currently cost businesses an average of 3.6% of their annual revenue.  For the 25% worst affected businesses, this equates to at least a quarter of a billion dollars ($250 million) every year and that, on average, 14 weeks pass between a successful attack taking place and its detection.  
 
Netacea found that every sector had a substantial bot problem, with two-thirds of businesses detecting website attacks.
 
  • 46% of respondents reported mobile apps had been attacked.
  • 23%, mostly in the financial services, said bots had attacked their Application Programming Interface (API -  a type of software connecting to other pieces of software).
  • Businesses have been affected by all types of bots, including scalper bots which use stolen usernames and passwords to take over accounts, sniper bots that monitor activity and swoop in at the last moment, and scraper bots that extract content and data from websites.

The Netacea research also discovered:

  • Over 80% of businesses reported that customer satisfaction had been negatively affected by bot activity, in particular scalper and sniper bots.
  • Only around 5% of security budgets are dedicated to bot mitigation, although larger firms spend more. with up to 20%.being spent on dealing with bots.
  • Account checker bots are the most popular form of bot attacks, taking advantage of data breaches and leaked passwords to compromise customer accounts.
​“Last year...  was a bumper year for those who use bots to leech off of those businesses, especially from bad actors who looked to take advantage of a significant shift to online working and retail,” said Andy Still, CTO of Netacea“While there is a greater awareness of the threat than in previous years.... Businesses need to realise that bots are not a mere nuisance, but a genuine security threat, especially when a business is already struggling because of other factors.”
 
Netacea’s previous research on Dark Web markets for stolen credentials, shows how sophisticated the cyber crime industry is becoming. Those operating bots do so at a professional level, with consultants, help desks and highly specialised infrastructure providers accessible through covert forums, making bots widely available.
 
Netacea:   
 
You Might Also Read:
 
Banking Botnet Profit Share:
 
 
 
 
« Business Leaders Can Make Big Mistakes About Cyber Security
British Military Aim To Reduce Their Attack Surface »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

DriveLock

DriveLock

Our security solution is designed to prevent external attacks, which are evermore sophisticated as well as monitor, document and even prevent internal incidents.

Digitus Biometrics

Digitus Biometrics

Digitus Biometrics is a market leader in biometric access control. We can secure access to any entry point, from the front door to the server rack cabinet.

StickyMinds

StickyMinds

StickyMinds is the web's first interactive testing community exclusively engaged in improving software quality throughout the software development lifecycle.

Mitek Systems

Mitek Systems

Mitek's global mobile capture and identity verification technology optimizes the digital user experience for thousands of financial services organizations.

Wüpper Management Consulting (WMC)

Wüpper Management Consulting (WMC)

Specialized in compliance, risk management and holistic information security WMC GmbH has longtime implementation experience in global projects.

Tutamantic

Tutamantic

Tutamantic develops software that reduces security risks and weaknesses during the architectural and design stages.

VeriClouds

VeriClouds

VeriClouds is a password verification service that helps organizations detect compromised passwords and stop account takeover attacks.

Valence Security

Valence Security

Valence manages and secures your Business Application Mesh by delivering visibility, reducing unauthorized access and preventing data loss.

Kiberna

Kiberna

Kiberna are a small but niche company specialising in data driven security to manage your cyber risks.

LocateRisk

LocateRisk

LocateRisk provides more efficiency, transparency and comparability in IT security with automated, KPI-based IT risk analyses.

Green Radar

Green Radar

Green Radar is a next generation cybersecurity company which combines technologies and services together to deliver Threat Detection for Emails and Deep Threat Analytics and Response.

Third Point Ventures

Third Point Ventures

Third Point brings deep technical expertise, a strong network of relationships, and decades of investing experience to add value to our partners throughout their journey from idea to IPO and beyond.

TriCIS

TriCIS

TriCIS design and engineer highly secure integrated solutions that meet the highest government and military security standards, providing information assurance to organisations across the globe.

Rescana

Rescana

Rescana offers a cyber risk management platform with the vision to remove the security team bottlenecks, accelerating business processes that require risk assessment.

Leostream

Leostream

Leostream's Remote Desktop Access Platform enables seamless work-from-anywhere flexibility while maintaining security and constant visibility of users.

Netia

Netia

Netia is a Polish telecommunications company providing a range of business services including network solutions, communications, data centre and cloud, and cybersecurity.