White Papers

Aberdeen Automated Attacks on Your Website

Learn about the changing threat landscape of bots and botnets. Our bot detection & bot mitigation white papers show how to address them with Distil Networks.

Issue link: https://resources.distilnetworks.com/i/734487

Contents of this Issue

Navigation

Page 4 of 6

www.aberdeen.com Evaluating Alternative Countermeasures for Reducing the Business Impact of Bad Bots In an aggregate analysis of all website traffic across all industries, based on an annual contribution of $100M in revenue and a total of 100K to 1M data records that could potentially be compromised, Aberdeen's Monte Carlo analysis yields the following insights about the risk of bad bots: After the implementation of a web application firewall (WAF) solution, the annualized business impact of bad bots is estimated to be between 0.8% and 4.9% of annual website revenue, with a median of about 2.4%. This represents a median reduction in risk of about 1.8 times, compared to the status quo, net of the incremental investment in WAF. After the implementation of an advanced bot detection and mitigation solution, the annualized business impact of bad bots is estimated to be between 0.17% and 0.32% of annual website revenue, with a median of about 0.22%. This represents a median reduction in risk of about 18.9 times, net of the incremental investment in advanced bot detection and mitigation, and a median annual return on investment of about 23.8 times. In addition, an investment in an advanced bot detection and mitigation solution results in a significant (about 25 times) reduction in the "long tail" of risk from bad bots, compared to the status quo. Figure 2 provides a snapshot of Aberdeen's Monte Carlo analysis for each website category, under the scenario of using an advanced bot detection and mitigation solution. The business implications of these updated estimates include the following: A web application firewall (WAF) is specifically designed for the protection of websites, by applying a set of rules to web traffic and defending against known web application security vulnerabilities and exploits. It adds incremental cost to the status quo, and provides moderate additional effectiveness against bad bots. An advanced bot detection and mitigation solution is designed to identify bad bot behaviors, and to provide a range of options for mitigation (e.g., blocking, CAPTCHAs, monitoring and reporting, slowing down, serving alternative data). This recently emerging solution category adds incremental cost to the status quo, and provides significant additional effectiveness against bad bots.

Articles in this issue

Links on this page

Archives of this issue

view archives of White Papers - Aberdeen Automated Attacks on Your Website