Framework for building a configuration driven data lake using Data Fusion and Composer
February 25, 2021
New Cloud Security Podcast by Google is here
February 25, 2021
More business is done online than ever before, which means bot attacks are up and the stakes are higher and higher for businesses. In 2019, bots accounted for over half of all automated web traffic and nearly a quarter of all internet traffic. Organizations are aware of the growing increase in bot attacks and the need to defend against them. However, most organizations recognize they are not prepared to protect against bot and malicious-automated attacks. Google commissioned Forrester Consulting to evaluate bot management approaches in order to help our customers protect against online fraud and abuse. Today, we share our findings from the research, including the most prevalent attacks targeting businesses and how to protect against them.
Businesses understand the impending threat of bot attacks, but acknowledge they are not yet prepared for them.
In our research, we see that 84% of companies saw an increase in the number of bot attacks over the last year. The transformation of so many businesses into digital businesses due to COVID-19 increased the number of attacks; 71% of companies experienced an increase in the number of successful attacks, and 56% of companies reported seeing different types of attacks.
Despite being aware of the rise in bot attacks, most organizations are not prepared to fend off them. Most are not using the right combination of security products to protect against bots. 78% of organizations are using DDoS protection, WAF, and/or CDNs to manage bots; only 19% are currently using a full bot management system. DDoS protection, WAF, and CDNs are all important tools to protect web applications, but they do not sufficiently protect against bots. Bots attack an application’s business logic, and only a bot management solution can protect against that sort of threat. To effectively safeguard web applications from bot attacks, organizations must use tools like DDoS protection, WAF, and/or CDNs, alongside a bot management solution..
Organizations are also unprepared for bot attacks because they are not protecting themselves against the most important and common attacks. For example, only 15% of businesses are currently protecting themselves against web scraping attacks, yet 73% face these attacks on a weekly basis. 63% report losing between 1% and 10% of their revenue to web scraping attacks alone. On average, organizations are only protecting themselves against three different types of attacks — most commonly card fraud, ad fraud, and influence fraud attacks. Businesses need to take time to identify the most common attacks targeting them so that they can then put proper protection measures in place.
