![]() ![]() ![]() But even waiting rooms and ticket numbers can be exploited at scale. To combat sneaker bots, retailers are resorting to lotteries and waiting rooms, where shoppers have to take a number in order to complete a purchase or registration. ![]() As a result, bots are often in violation of eCommerce providers’ terms of service. At the same time, it can be considered to be an automated attack that creates frustrated shoppers and retailers alike. While sneaker botting may be unfair, it’s completely legal. ![]() Last year, bots accounted for at least 20% of traffic to eCommerce sites, but when it comes to new sneaker drops, that percentage soars to 99% in some cases. Due to the mature ecosystem, sneaker bots are a growing problem for online organizations. This is usually conducted so retailers appear to be sold out of an item, forcing consumers to go to a reseller to find what they’re looking for and pay 2-5x the retail price. Sneaker bots are also known to hoard inventory in online shopping carts without checking out, which is an OWASP automated threat known as denial of inventory. Any time where demand exceeds supply - and where there’s a profit to be made - you will find bots behind the scenes, as we witnessed with the PS5 and hand sanitizer online sales over the past year. When paired with proxies and user agents to make them appear as authentic consumers, sneaker bots can be used to scoop up other in-demand merchandise and services, such as gaming systems, concert tickets, consumer electronics, luxury apparel, hotel rooms, and even vaccines. But bots aren’t just for scoring sneakers for resale. ![]()
0 Comments
Leave a Reply. |