Cequence Security

Web scraping, also known as content scraping, web harvesting or web data extraction is the use of automation to collect data or processed output from a public-facing application. Common content scraping targets include retail, financial services, travel, hospitality and social media. In some cases, content scraping is encouraged, requiring organizations to strike a balance between allowing the practice while ensuring that the infrastructure, and ultimately the customer experience, is not negatively impacted. In cases like this, where content scraping is deemed malicious, the result can include stolen intellectual property, sales decline, lost customers and brand degradation.

Retail Content Scraping: Legitimate or Malicious?

Digitally-connected organizations often experience a combination of malicious scraping and search engine abuse that exhibit the following characteristics:

  • Multiple masking or evasive techniques disguise the activity including browser spoofing, forgery and sophisticated user agent rotation.
  • The search queries target every single web application URI across multiple locations and the patterns appear too perfect and too fast to be human.
  • The queries are distributed across a wide range of locations that don’t match the locations of the search queries themselves.
  • Many of the targeted URIs and inventory items queried do not exist, placing significant strain on their infrastructure.

Taken collectively, the findings provide strong evidence that the intent of the scraping and search activity is malicious.

Content Scraping

Content scraping can be highly automated, targeting APIs directly, as well as mobile or web apps.

Preventing Content Scraping: Key CQ botDefense Differentiators

  • ML-based analytics engine analyzes both HTTP POST and GET: Cequence Application Security Platform with CQ botDefense is the only solution on the market that uses an out-of-band, ML-based analytics engine (CQAI) to discover and analyze both the HTTP POST and GET, allowing you to uncover behavioral patterns that are indicative of scraping. Alternative JavaScript instrumentation and mobile SDK integration-based solutions rely heavily on HTTP POST, limiting their efficacy to detect and mitigate scraping activity.
  • Open, extensible platform with customizable responses: Using more than 150 customizable automation indicators, CQAI determines the malicious or benign intent of each content request transaction. Customizable mitigation policies provide multiple response options including block, rate limit, geo fence, or deception. Alternatively, the REST API can be used to export CQAI findings to external systems for archiving, additional analysis or an alternative response.
  • New content protected automatically, security-induced delays eliminated: Scraping attacks are highly automated, often targeting APIs directly. As new web, mobile or API-based content is deployed, it is automatically discovered and protected by CQ botDefense, effectively baking security into your application deployment workflow. The stateless nature of APIs means that alternative JavaScript instrumentation and mobile SDK integration-based solutions are unable to collect the necessary telemetry to deliver consistent protection from content scraping.
  • Consistent protection for APIs, web and mobile applications: CQ botDefense protects all of your public-facing applications – web, mobile and any supporting APIs – from automated attacks including scraping. A single, consistent security policy protects all of your applications, providing an opportunity to consolidate application security functions into a single platform.
  • Deployable anywhere: A container-based software architecture allows CQ botDefense to be deployed in your data center, the cloud or as a SaaS offering, allowing you to choose the architecture that best fits your needs.

Additional Content Scraping Resources

CQ botDefense SaaS Datasheet

CQ botDefense 5 Minute Demo

Blog: When Comparison Shopping Becomes Malicious