• About
  • Subscribe
  • Contact
Saturday, January 16, 2021
    Login
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Videos
  • Resources
  • Virtual Events
  • Events
No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Videos
  • Resources
  • Virtual Events
  • Events
No Result
View All Result
No Result
View All Result

Beware: bad bots may lurk behind the online shopping boom

FutureCIO Editors by FutureCIO Editors
December 4, 2020
Image from Burst

Image from Burst

If the 2020 Singles Day (US$115 billion), Black Friday (US$9 billion) and Cyber Monday (US$10.8  billion) are anything to come by, online shopping knows more pandemic. Some might even argue that the pandemic is driving people to shop even harder online.

What does Sutton’s Law state?

But that’s not the point of this.

Barracuda researchers issued a warning that as shoppers across Asia-Pacific ramp up their online shopping in preparation for the Christmas holidays, they could be an attractive target for cybercriminals using bots to run distributed denial of service (DDoS) attacks.

Testing, testing, 1-2-3

In mid-November, Barracuda researchers ran Barracuda Advanced Bot Protection in front of a test web application, which in just a few days, detected millions of attacks coming from thousands of distinct IP addresses. Attacks like these are often used to make fraudulent purchases, while helping cybercriminals to scan for any vulnerabilities they can exploit.

Bad bots

Known as ‘bad bot personas’ the bots are identified as malicious based on their pattern of behaviour and are grouped together by User-Agent.

The trouble is, that some User-Agents include ‘good bots’ like GoogleBot, which crawls sites and adds them to search rankings – and it can be difficult to tell them apart without deeper investigation, as bad bots will often spoof good User-Agents.

When viewing the attacks by time of day, Barracuda researchers saw that bots don’t just wait until the middle of the night to attack. In fact, bot activity peaks late morning and doesn’t fall off until closer to 5p.m., which may indicate the cybercriminals (aka “bot herders”) follow a regular working day.

“It’s clear that cybercriminals are powering up for the Christmas rush, so with holiday shopping season now in full swing across the region, it’s crucial that e-commerce teams take the appropriate steps to safeguard their applications against bad bots,” said Mark Lukie, engineer manager, Barracuda APAC.

How to protect against bad bots

To protect against these attacks, Barracuda recommends installing properly configured web application firewalls or WAF-as-a-Service solutions, whilst making sure application security solutions include anti-bot protection to effectively detect advanced automated attacks. The firm also recommends turning on credential stuffing protection to prevent account takeover attacks.

“As businesses of all sizes rush to wrap-up for the holidays, and people flood e-commerce sites looking for the perfect gift, taking these simple steps can stop cybercriminals from putting a damper on your festive celebrations,” he added.

Related:  Securing the connection for remote workers
Tags: bad botsBarracuda Networks
FutureCIO Editors

FutureCIO Editors

No Result
View All Result

Recent Posts

  • Standard Chartered-Bukalapak combo to foster financial inclusion in Indonesia
  • HR leaders must address 5 future of work issues in 2021
  • Resilience initiatives to drive big data analytics solutions uptake in 2021
  • e-Commerce growth forces the technologization of supply chains
  • 5 practical uses for predictive analytics in marketing

Live Poll - June 2020

In the event of a ransomware attack, should the CEO:
Vote

Categories

  • Big Data, Analytics & Intelligence
  • Business Applications & Databases
  • Business-IT Alignment
  • Careers
  • Case Studies
  • Cloud, Virtualization, Operating Environments and Middleware
  • Computer, Storage, Networks, Connectivity
  • Corporate Social Responsibility
  • Customer Experience / Engagement
  • Education
  • Finance
  • Finance & Insurance
  • General
  • Governance, Risk and Compliance
  • Government and Public Services
  • Growth Strategies
  • Hospitality & Tourism
  • HR, education and Training
  • Industry Verticals
  • Infrastructure & Platforms
  • Latest Stories
  • Logistics & Transportation
  • Management Leadership
  • Manufacturing
  • Media and Telecommunications
  • News Stories
  • Operations
  • Opinion
  • Opinions
  • Retail & Wholesale
  • Sales & Marketing
  • Security
  • Tactics and Strategies
  • Technology
  • Utilities
  • Videos
  • White Papers

Strategic Insights for Chief Information Officers

FutureCIO is about enabling the CIO, his team, the leadership and the enterprise through shared expertise, know-how and experience - through a community of shared interests and goals. It is also about discovering unknown best practices that will help realize new business models.

Quick Links

  • Videos
  • Resources
  • Subscribe
  • Contact

Cxociety Media Brands

  • FutureIoT
  • FutureCFO
  • FutureCIO

Categories

  • Privacy Policy
  • Terms of Use
  • Cookie Policy

Copyright © 2019 Cxociety Pte Ltd | Designed by Pixl

No Result
View All Result
  • Management Leadership
    • Growth Strategies
    • Finance
    • Operations
    • Sales and Marketing
    • Careers
  • Technology
    • Infrastructure and Platforms
    • Business Applications and Databases
    • Big Data, Analytics and Intelligence
    • Security
  • Industry Verticals
    • Finance and Insurance
    • Manufacturing
    • Logistics and Transportation
    • Retail and Wholesale
    • Hospitality and Tourism
    • Government and Public Services
    • Utilities
    • Media and Telecommunications
  • Videos
  • Resources
  • Virtual Events
  • Events
Login

Copyright © 2019 Cxociety Pte Ltd | Designed by Pixl

Login to your account below

or

Not a member yet? Register here

Forgotten Password?

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In