SESSION ID:TTA-R08 Good Bot, Bad Bot, Ugly Bot. Battle of the Bots! John Ellis – 周由安 Chief Strategist, Cyber Security (APJ) Akamai Technologies @zenofsecurity #RSAC #RSAC About me Kiwi (New Zealander) 20+ years experience in IT security (trained sheep to hack) Have worked in defence, telecommunications and banking Consider myself a student, but love to share what I know 9 years in Singapore, and see we’re still trying to find the Asian solution to the Asian problem (talk to me afterwards if you want to know more). Still ‘trying’ to learn Mandarin….might one day get there 2 #RSAC Cyber ‘buzz’ bingo Cyber SaaS Threat Intel Cloud BOYD Cyber Kill IoT Innovation Big Data Breach Chain TTPs Signal to noise Cross-Platform SMAC Next-gen Thought APT China Data Driven Cyber Attack Leaders BOT Game Changer PaaS Cyber Crime Hacktivist #RSAC What is a bot? A software application that automates tasks that are simple and structurally repetitive at much higher rates or precision than a human. #RSAC Bot trends & environment Bad Bots Account for 29% of all website visits 22% fraud activity Good Bad 3.5% Hacking tools Aggregator, media bots Search engine, crawlers, 44% Human spider bots 3% scrapers Partner bots Spam bots traffic 56% Bot traffic Hacker, Fraud bots Vulnerability scanner, Site Scraper bots performance bots 0.5% Spammers DDoSbots Good Bots Account for 27% of all website visits Source: Incapsula/ Akamai #RSAC Good bots Search engine optimization (SEO) Marketing Performance Vulnerability Scanners analysis tools #RSAC Bad bots Vulnerability scanners Fraud Scrapers (your Malware competitors) Spam (it ain’tham) DDoS attacks Did I mention malware? #RSAC Ugly ‘naughty’ bots Scrapers Want to know everything about you Price Aggregators Crawlers Malicious? Maybe, Maybe not Too Friendly #RSAC SPAM Bots Target marketing Fraud Malware distribution Improve SEO 9 #RSAC Scraper Bots (an example) Scraping Service / Tools Aggregator Website 10
Description: