Secure 2024: Forrester Wave™ Q2 2022 Showcases Leading Bot Management Solutions
Case Study

Build.com Stops Account Takeover Attacks

HUMAN_Case-Study_ATO-Scraping_Build.com

Company

Build.com is an online home improvement retailer. The company sells bathroom, kitchen and lighting hardware, appliances and other supplies.

Dan Davis

VP of Technology, Build.com

“We live in a very dynamic world where threats are evolving and customer expectations are increasing. Having a team that we can rely on that feels like a natural extension of our team has been a big piece of our relationship with HUMAN.”

Human-Case Study-Exclamation Mark Icons@2x

Challenge

Build.com had been experiencing automated bots scraping their product data, but they considered it an inevitable part of being an online business. Soon however, the attacks grew in sophistication. Bots not only continued to scrape the site, but also targeted login pages with credential stuffing and account takeover attacks. These attacks were distributed in nature and mimicked real user traffic, with a large amount of unique IPs and high volume of requests coming from each IP. Customers couldn’t log in because Build.com’s login service was overwhelmed. It was clear that the company’s firewalls and other traditional web security controls weren’t sufficient to block more advanced bad bots.


Human-Case Study-Shield checkmark icon@2x

Solution

Build.com engaged HUMAN to accurately detect and mitigate sophisticated bot attacks.

The team chose HUMAN Bot Defender for the following capabilities:

  • Advanced machine learning and behavioral analysis: Bot Defender takes a behavior-based approach to not only identify automated traffic, but distinguish good bots from bad.
  • Easy integrations: Bot Defender seamlessly integrated with Build.com’s existing tech stack, including Fastly. There were no changes required or disruptions to performance.
  • Low latency: Bot Defender blocks bots at the edge to improve latency and website performance. The solution stops sophisticated bot attacks without impacting user experience.

RESULTS

With Bot Defender, Build.com was able to identify behavioral anomalies that marked malicious automated traffic and execute appropriate mitigation actions. The company no longer experienced disruptions in their login service, and they enjoyed better latency and site speed. Best of all, their risk of automated scraping and account takeover attacks was reduced.

Connect with Us
to Learn More How HUMAN Can Mitigate ATO and Scraping Attacks for You

Related Resources