For years, there have been surveys reporting on the state of bad bots to demonstrate the increasing sophistication and financial impact malicious bots have on businesses. The result of these studies? Bad bots are bad for business. But we already knew that, didn’t we?
We conduct a different type of survey. One that covers the state of bot mitigation exclusively from the perspective of organizations already using anti-bot solutions to protect them. To report on how those leveraging bot mitigation are faring at keeping automated threats and online fraud at bay.
2024 State of Bot Mitigation Survey Methodology
As in prior years, we hired an independent research firm to survey information technology decision makers from more than 200 organizations that said they or their team is responsible for managing and/or mitigating bots.
All of the respondents work at companies of more than 250 employees, although the majority work at companies with 1,000 or more, and almost a quarter of which have 5,000 or more. Their job functions include Fraud/Risk Management, Cybersecurity, IT/IT Operations, or Engineering.
A broad range of industries are represented in the survey, including: Technology / Internet, Financial / Banking, Insurance, Manufacturing, Communication, Media/ Entertainment, Retail / eCommerce, Real Estate, Hospitality, Travel, Energy / Oil & Gas.
All survey respondents confirmed their organization’s use of a dedicated anti-bot solution. This year, 67% of companies surveyed relied on traditional CDN-based bot management for all or part of their bot defense. Many organizations deployed more than a single solution, inclusive of CAPTCHA (reCAPTCHA, hCAPTCHA, funCAPTCHA, etc.).
5 Key Survey Findings & Takeaways
1. The Financial Impact of Bad Bots Remains Large
Survey Finding: 98% of companies who experienced bot attacks lost revenue as a result. 24% of respondents say that on average a single bot attack costs their organization $500,000 or more, and 49% say a single bot attack costs their organization $250,000 or more. One third report that Account fraud, SMS fraud, and web scraping each cost 5% or more of revenues.


