Automated attack trends were analyzed by HUMAN Security. The report analyzed methods such as account takeover, brute forcing, carding, credential stuffing, inventory hoarding, scalping and web scraping.
Bad bot traffic overall increased even as people spent less time online. Legitimate human traffic dropped 28% year-over-year, but bad bot traffic increased 102% — meaning that the percentage of bad bots out of overall traffic has increased even faster. Web applications experienced an increase in three common types of bot attacks. Carding attacks rose 134%, account takeover attacks rose 108% and scraping rose 107%.