Secure 2024: Forrester Wave™ Q2 2022 Showcases Leading Bot Management Solutions

2023 ENTERPRISE BOT FRAUD BENCHMARK REPORT

The annual HUMAN Enterprise Bot Fraud Benchmark Report provides insights into automated attack trends across enterprise use cases, including account takeover, brute forcing, carding, credential stuffing, inventory hoarding, scalping, and web scraping.

HUMAN-2023 Bot Fraud Report-Clock

Bad bot traffic increased overall
even as people spent
less time online

Bad bot traffic increased overall even as people spent
less time online

HUMAN-2023 Bot Fraud Report-Statistic Up

102%

YoY increase in
bad bot traffic

HUMAN-2023 Bot Fraud Report-Human Traffic Down

28%

YoY decrease in
legitimate human traffic

Automated attacks
continued to grow

From 2021 to 2022:

HUMAN-2023 Bot Fraud Report-Account Takeover Up@2x

108%

YoY increase in account takeover attacks

HUMAN-2023 Bot Fraud Report-Carding Attacks Up@2x

134%

YoY increase in carding attacks

HUMAN-2023 Bot Fraud Report-Scraping Attacks Up@2x

107%

YoY increase in scraping attacks

Certain industries experienced more bot attacks than others

Of traffic to online businesses, bad bots accounted for:

HUMAN-2023 Bot Fraud Report-Media and Streaming

57%

in the Media
& Streaming industry

HUMAN-2023 Bot Fraud Report-Travel and Hospitality

49%

in the Travel &
Hospitality industry

HUMAN-2023 Bot Fraud Report-Ticketing and Entertainment

46%

in the Ticketing &
Entertainment industry

Enterprise attackers prefer
to hide behind desktop devices

Enterprise attackers prefer to hide behind desktop devices

HUMAN-2023 Bot Fraud Report-Desktop Devices

26%

of malicious requests appeared to come
from mobile

of malicious requests appeared to come from mobile

74%

of malicious requests appeared to come
from desktop

of malicious requests appeared to come from desktop

Attackers will typically utilize proxy and anonymizing servers in the region they target

HUMAN-2023 Bot Fraud Report-Target Region
HUMAN-2023 Bot Fraud Report-68 Percent Bar

69%

of worldwide malicious traffic came from
U.S. proxy servers

HUMAN-2023 Bot Fraud Report-46 Percent Bar

47%

of worldwide traffic to non-U.S. applications
came from U.S. proxy servers

HUMAN-2023 Bot Fraud Report-75 Percent Bar

75%

of worldwide traffic to U.S. applications
only came from U.S. proxy servers

We don’t just find the problem, we solve it. HUMAN applies modern defense to detect and mitigate sophisticated bot attacks with unmatched speed, scale, and precision.

Together, we can stop bad bots and disrupt the economics of cybercrime.

Be the first to see our research.

Don’t fight
automated fraud alone.

Don’t fight automated fraud alone.

Reach out to our expert Humans to learn more about bot-driven threats to enterprise organizations and how we can stop them together.