Structure Security and Distil: Are Bot Operators Eating Your Lunch?

November 30, 2016 Edward Roberts

At the first Structure Security event in San Francisco in September, Distil Presented a talk titled “Are bot operators eating your lunch? High risk lessons from OWASP Top 20 automated threats. A new way to think about Web Security.”

This presentation examined how bots are abusing websites and explored the following:

What are the behaviors of bad bots?
Research into how bots are evasive and behaving more like humans
Understanding the OWASP Automated Threats
Detailing why Web Application Firewall’s (WAF) are not built to prevent bots
Real-life case studies about web scraping, vulnerability scanning, credential cracking and stuffing (aka. Account takeover)
How identifying a bot begins with a hi-def fingerprint
The benefits of an inline technology in mitigating bots

Watch the full presentation by Edward Roberts below

About the Author

Edward Roberts leads Product Marketing and has over twenty years experience in technology marketing. Previously he worked for Juniper Networks, heading up Product Marketing for the Counter Security team. Before that he ran marketing for Mykonos Software, a web security company.
More Content by Edward Roberts

Infographic: Can You Trust a Bot?

Humans only make up 54% of total web traffic while bots make up the rest. Are bots bad though? View the dif...

Reviewing IoT Security Vulnerabilities: The Real Cost of Interconnectivity

Technology has improved greatly since 2007 with billions of interconnected devices, but IoT security standa...

DISTIL NETWORKS' RESOURCES HUB

Structure Security and Distil: Are Bot Operators Eating Your Lunch?

About the Author

Previous Article

Next Article

Structure Security and Distil: Are Bot Operators Eating Your Lunch?

About the Author

Previous Article

Next Article

Other content in this Stream

Airlines are constantly being attacked by bots. This webinar will explore the airline bot, seat spinning and look to book ratio problem in-depth and will explain who is behind these attacks.

The airline industry sees a significant amount of bad bot traffic compared to others. In fact, 43.9% of airline traffic comes from bad bots. But what does that really mean for airline companies?

Distil’s Research Lab recently released a new threat research report titled, “How Bots Affect Airlines.” This is the first industry-specific report into airline bots and analyzed 7.4 billion requests.

NGINX. NGINX is used as a reverse proxy, Distil Networks have the ability to bring incoming traffic to a to a single layer where actions are taken and HTTP packets can be inspected.

Industrial-scale ticket reselling is damaging to the ticketing ecosystem – diverting millions of dollars into the pockets of touts.

Download the Forrester New Wave Report on Bot Management for an overview of their evaluation of technology vendors to help cope with bad bot threats.

There is some good news and bad news for IT and security executives in the latest bad bot report. The good news is that there has been an overall decrease in the number of bad bots reported.

Being named a leader is a very proud moment in the history of Distil and reflects the expertise, superior technology, and vigilant service we provide to our growing customer base.

Nearly half of all Web traffic (46%) now originates from bots, with 19% from bad bots. It’s this 19% that causes the majority of problems. These are quite diverse in nature and vary from site to site.

There is some good news and bad news for IT and security executives in the latest bad bot report. The good news is that there has been an overall decrease in the number of bad bots reported.

The Distil Research Lab released their latest threat research report called Mobile Bots: The Next Evolution of Bad Bots revealing that sophisticated bot operators now implement a new technique.

In this mobile bots study, Distil Networks now sees 5.8% of all mobile devices on cellular networks are used in bad bot attacks.

Founder of Distil Networks, Rami Essaid is a passionate entrepreneur who has been building companies for over a decade. Read the transcript of Enterprise Security Week’s talk with Rami Essaid.

Airlines suffer from automated abuse from bad bots in a major way. 43.9% of all traffic on airlines websites came from bad bots. Humans accounted for only 55.2% of traffic.

Over half (53.1%) the traffic on gambling and gaming websites comes from bad bots. Only 46.8% of traffic on these websites was human. What are these bad bots doing on gambling sites?

With most bad bot traffic emanating from data centers, it’s no surprise that the US remains the bad bot superpower. But Russia became the most blocked country by Distil customers in 2017.

WIthin our new Threat Research report on The Anatomy of Account Takeover Attacks, we see bad bot traffic on 100% of all monitored login pages.

Meet 2017 recipient Jenny Calderon. Beginning as a child her passion for discovering “how things work” encouraged her studies in the STEM field. Learn more about her path!

Banks are digitizing at a rapid pace to catch up with upstart fintech providers. Such rapid evolution can run the risk of introducing vulnerabilities.

Bad bots makeup 21.4% of traffic on ecommerce sites. When you consider the goals of any bot operator it is easy to understand why ecommerce websites suffer from bot problems.