Security News

Cybercriminals are increasingly using legitimate services such as Google Forms and Telegram to gather user data stolen on phishing websites. Alternative ways to collect data help cybercriminals keep it safe and start using the information immediately, says Group-IB. In addition, ready-to-go platforms that automate phishing and which are available on the darknet also have Telegram bots at their core, with admin panel that is used to manage the entire process of the phishing attack and keep financial records linked to them.

To select a suitable bot protection solution for your business, you need to think about a variety of factors. A successful bot mitigation solution has to be effective immediately, stopping new bots and never seen before attack methods.

To address the increasing sophistication of bot attacks, Kasada has upgraded its platform to provide real-time defense against advanced bots that are left undetected by traditional methods. In its V2 release, Kasada has made several improvements that provide customers with an immediate and long-term approach to bot mitigation, without the need for burdensome maintenance.

As they do this, Imperva Research Labs has monitored a staggering 372% increase in healthcare bot traffic globally since September 2020. In February 2021, bot traffic soared 48.8%, the largest increase over the past year, and reaching an unprecedented level over the 12-month average.

Recently, the new Adidas Yeezy Boost 700 "Sun" shoes from Kanye West made their debut, raising concerns that bots were likely on a shopping spree as they traditionally are during weeks when a hot new brand is launched. "Monitoring bots were indeed active both days while the checkout bots were active when the inventory was available to purchase. Using our advanced detection techniques, PerimeterX was able to block most of these sneaker bots at the beginning of the launch and prevent scalpers from buying the shoe in question," DeCarlis said.

Swing states were heavily targeted with false information posted by fake social media accounts created by bot operators. There is currently little being done to strike back against or even frustrate bot operators.

Bots - basically autonomous programs on the web - have emerged amid widespread frustration with the online world of vaccine appointments. The most notable bots scan vaccine provider websites to detect changes, which could mean a clinic is adding new appointments.

Researchers at Cequence Security track bots across the internet, and the company's hacker-in-residence, Jason Kent, told Threatpost that sneaker bots are plaguing new shoe releases, like the Adidas Yeezy "Ash Blues" released in late February, and creating legions of frustrated customers who can't get new products. While regular shoppers are stuck working through a retailer's web interface, Kent said these sneaker bots get in through the site's API, a much more efficient route to scoop up product.

Looking to take advantage of a growing global market for its bot protection technologies, PerimeterX has banked a new $57 million round of venture capital funding. PerimeterX said AllianceBernstein led the new capital raise, and was joined by new investors Stereo Capital, JS Capital and Golden Arc Capital.

These bots work to expose and take advantage of vulnerabilities at a rapid pace, stealing critical personal and financial data, scraping intellectual property, installing malware, contributing to DDoS attacks, distorting web analytics and damaging SEO. Luckily, tools, approaches, solutions and best practices exist to help companies combat these malicious bots, but cybercriminals have not been resting on their laurels and are constantly working on ways to bypass the protections used to block bot activity. It is important to regularly review what tactics you are using to combat bot traffic and analyze your success rate, as this process will help you understand whether your mitigation approach has already been figured out and worked around by cybercriminals.