- Report warns sophisticated bots mimic human behavior so well outdated defenses, they have no possibility
- Mobile applications are under siege, with an increase of 160% in Bot traffic directed year after year
- Captcha Farms and rotating proxies help the bots of basic defenses
Internet has entered a new era in which automated traffic now represents more web activity than human users, says New Research.
The Electronic Bot Threat 2025 Radware reports that the majority of traffic to online stores during the 2024 holiday season did not come from people. Bots wine.
For the first time, automated programs, ranging from simple scripts to improved digital agents with AI, represented 57% of all traffic, surpassing human visitors on electronic commerce websites.
A smart generation of bad bots
The report highlights the continuous evolution of malicious bots, since almost 60% now use behavior strategies designed to evade detection, such as rotating IP addresses and identities, the use of captcha farms and imitates human navigation patterns, which makes them difficult to identify without advanced tools.
The only effective accountant is equally intelligent detection: defenses with AI that can learn and adapt. Companies must reassess their safety battery and look beyond basic filters to solutions that offer advanced ddos ​​protection and intelligent traffic monitoring.
“The bad bots are no longer based on simple scripts: they are sophisticated and improved agents by AI capable of overcoming traditional defenses,” said Ron Meyran, vice president of intelligence of cyber threats in radio.
“Electronic commerce and online retailers that depend on conventional security measures will be increasingly exposed, not only during the holidays but throughout the year.”
Mobile platforms have become a critical battlefield, with an amazing increase of 160% in the Bot activity aimed at mobiles between vacation seasons 2023 and 2024. Attackers are implementing mobile emulators and headless browsers who imitate the legitimate behavior of the application.
The report also warns that the bots are mixed with daily internet traffic. A 32% increase in the attack traffic of residential proxy networks is making it difficult for electronic commerce sites to apply traditional limitation or geographical techniques.
Perhaps the most alarming development is the increase in multiple vector campaigns that combine bots with traditional feats and attacks aimed at API. These campaigns go beyond scraping prices or stolen credentials tests: their goal is to take off the off -line sites completely.
For companies that depend on the best builders of Electronic Commerce websites or easy -to -use platforms, the threat is clear. Security must evolve in tune with the attackers. Platforms must also adopt dedicated mobile protections to defend themselves from these increasingly sophisticated threats.
