ANTI SCRAPING CASE STUDY



Similar documents
THE 2014 THREAT DETECTION CHECKLIST. Six ways to tell a criminal from a customer.

SHARE THIS WHITEPAPER. Top Selection Criteria for an Anti-DDoS Solution Whitepaper

Service Description DDoS Mitigation Service

Q3 2015: TRADING IN LINE WITH OUR EXPECTATIONS STRATEGY IMPLEMENTATION UNDERWAY

the sporting index group

THE BOSS. The Betting One Stop Shop

Jackpot! Money Laundering Through Online Gambling

Imperva Cloud WAF. How to Protect Your Website from Hackers. Hackers. *Bots. Legitimate. Your Websites. Scrapers. Comment Spammers

Top tips for improved network security

the sporting index group

Dutch Remote Gambling Bill Consultation

SYMANTEC MANAGED SECURITY SERVICES. Superior information security delivered with exceptional value.

3. Some of the technical measures presently under consideration are methods of traffic shaping, namely bandwidth capping and bandwidth shaping 2.

SIS DISTRIBUTION. Satellite Information Services Limited Distribution

WHITE PAPER. Internet Gambling Sites. Expose Fraud Rings and Stop Repeat Offenders with Device Reputation

10 Things Every Web Application Firewall Should Provide Share this ebook

Top five strategies for combating modern threats Is anti-virus dead?

STRATEGIC MANAGEMENT BETFAIR

Availability Digest. Prolexic a DDoS Mitigation Service Provider April 2013

LADBROKES/CORAL MERGER INQUIRY. Summary of hearing with Jenningsbet on 1 February 2016

Uncover security risks on your enterprise network

Protecting DNS Critical Infrastructure Solution Overview. Radware Attack Mitigation System (AMS) - Whitepaper

Stop DDoS Attacks in Minutes

A CHASE PAYMENTECH WHITE PAPER. Expanding internationally: Strategies to combat online fraud

Learn How to Defend Your Online Marketplace from Unwanted Traffic

Swordfish

DDoS Protection. How Cisco IT Protects Against Distributed Denial of Service Attacks. A Cisco on Cisco Case Study: Inside Cisco IT

Arbs2U Is it right for me? 17 October 2014

Best Practices in Digital Rights Management:

We would be happy to contribute proportionally towards a further prevalence study.

SecurityDAM On-demand, Cloud-based DDoS Mitigation

The Cisco ASA 5500 as a Superior Firewall Solution

WAN security threat landscape and best mitigation practices. Rex Stover Vice President, Americas, Enterprise & ICP Sales

Protecting betting integrity

Four Steps to Defeat a DDoS Attack

Stop DDoS Attacks in Minutes

Distributed Denial of Service protection

ONLINE WAGERING IN AUSTRALIA NAGS CONFERENCE GOLD COAST NOVEMBER 2014

First Line of Defense to Protect Critical Infrastructure

CEOP Relationship Management Strategy

Working together to protect the Integrity of Sport. The role of the Joint Assessment Unit at the London 2012 Olympic Games

Cyber Security Services: Data Loss Prevention Monitoring Overview

Compliance and Unified Communication

Stop DDoS Attacks in Minutes

Protecting against DoS/DDoS Attacks with FortiWeb Web Application Firewall

Network Security and the Small Business

TRUE PERFORMANCE ENGINEERING

LogInspect 5 Product Features Robust. Dynamic. Unparalleled.

REGULATING INSIDER TRADING IN BETTING MARKETS

Protecting Against Application DDoS Attacks with BIG-IP ASM: A Three-Step Solution

CASSIDIAN CYBERSECURITY SECURITY OPERATIONS CENTRE SERVICES

LogPoint 5.1 Product Features Robust. Dynamic. Unparalleled.

Racing in the Modern Wagering World. Nigel Roddis December 2007

Top 10 Anti-fraud Tips: The Cybersecurity Breach Aftermath

Kick starting science...

DETERMINATION OF MERGER NOTIFICATION M/13/018 -

Internet Reputation Management Guidelines Building a Roadmap for Continued Success

HIGH-RISK USER MONITORING

How To Block A Ddos Attack On A Network With A Firewall

First Line of Defense

Check Point submitted the SWG Secure Web Gateway for

WHITE PAPER Moving Beyond the FFIEC Guidelines

The battle to contain fraud is as old as

Kaspersky Fraud Prevention platform: a comprehensive solution for secure payment processing

How To Know More About William Hill

Bridging the gap between COTS tool alerting and raw data analysis

Cutting the Cost of Application Security

Experian Hitwise The Online Gambling Landscape October 2010

ISO27032 Guidelines for Cyber Security

Four Steps to Defeat a DDoS Attack

The Future of the Scottish Horseracing Sector

Fighting Cyber Crime in the Telecommunications Industry. Sachi Chakrabarty

Powered by. Incapsula Cloud WAF

The Advantages of a Firewall Over an Interafer

SPECIAL CONDITIONS FOR KIMSUFI DEDICATED SERVER RENTAL. Latest version dated 07/11/2013

All about Threat Central

How To Avoid Bookmaker Restrictions. Some very useful tips for serious sports investor who uses Racing Profit Booster Daily

Internet Reputation Management Guide. Building a Roadmap for Continued Success

Sorting out SIEM strategy Five step guide to full security information visibility and controlled threat management

Unknown threats in Sweden. Study publication August 27, 2014

SIP, Security and Session Border Controllers

ONLINE AND MOBILE BANKING, YOUR RISKS COVERED

Application Denial of Service Is it Really That Easy?

UNCLASSIFIED. General Enquiries. Incidents Incidents

We make cards and payments work for people as a part of everyday life. We bring information to life

CRYING FOUL 12 MYTHS ABOUT SPORTS BETTING

Transcription:

ANTI SCRAPING CASE STUDY

CASE STUDY - GAMBLING INDUSTRY ScrapeSentry Anti Scraping Service has increased site availability, reduced infrastructure costs, and protects data for Ladbrokes Why scraping is an issue With over 800,000 active online gaming clients, Ladbrokes stand to lose significantly as a result of Scraping. Scraping not only puts Ladbrokes hard earned data into the wrong hands, it also can have a major impact on their clients by overloading servers and bandwidth resources with nonrevenue generating requests for information. This directly affects their users experience and can create a Denial of Service (DoS) type event. Either case results in a measureable decrease in revenue. ScrapeSentry Anti Scraping Service blocks illegitimate traffic to Ladbrokes site without affecting legitimate users experience. The service keeps Ladbrokes sites running smoothly and their data solely in the hands of their valued clients. The solution for Ladbrokes Ladbrokes consulted global IT security specialists Sentor in order to safeguard its business from scraping. Ladbrokes had the following requirements: - A real-time screen scraping detection and blocking capability - Service availability and response 24/7 - No interference with its booking engines, traffic, or any other adverse effect on resources - Invisible to legitimate users With the constant growth we are experiencing in On-Line betting it is increasingly important to ensure that we provide a highly reliable and accessible applications to our customer base. Scraping can have significant negative impacts on our business if not monitored and managed correctly. It may not only affect customer experience but can also create an apparent Denial of Service. We have been working with Sentor on this matter and are extremely satisfied with the advice and services that they have provided us with. Their expertise and capability of managing this issue has become invaluable and allows us to focus on our core business whilst knowing that the use and efficiency of our websites are being protected from those who simply want to scrape us to serve their own interests. Mike Gaffney, IT Manager at Ladbrokes 2

The challenge for betting companies Incidents of Scraping are becoming more common for betting companies, and particularly so for sportsbooks where data is costly to generate and update. Leveraging the data for arbitrage is not uncommon. With real-time gaming, response time and availability is paramount. Customer loyalty can be short lived. Clients move on to a competitor s service after missing only one bet. In a world where you can wager on who is going to get the next touch never mind score the next goal, any obstacle placed in their way hurts business. Adding even a few seconds can be an obstacle. It is important that scraping can be controlled to allow the business to deliver the necessary level of accessibility and service to its customers. The use of a CAPTCHA can be that one extra step that deters a client from placing a bet. Keeping in mind that responsible measures are already being made for instance to ensure age and geographic requirements are met. This resource problem holds even more relevance during major sports events such as the gold cup in horse racing or during a big football weekend when traffic volumes are naturally already higher than normal. Enabling genuine users to trade is critical and therefore not having any proper management and control on scraping activity greatly affect a business s bottom line. This can also cause irreparable harm to brand image, and encourage loyal customers to go elsewhere to place their bets. In Ladbrokes case it was identified that scraping could be very damaging if there was no way of controlling it and keeping it regulated. The challenge therefore was to identify groups of offenders along with individuals who were targeting Ladbrokes database purely to extract data for their own personal benefit. This needed to be done instantly in order to allow genuine users to be able to receive the level of response and service delivery to be able to place their transactions and view the necessary information. Differentiating between good and bad requests ScrapeSentry s Anti Scraping Service was developed by Sentor Managed Security Services. ScrapeSentry has been at the cutting edge of combating data scraping since 2006. Search engine bots must be allowed through as they index your site, giving you your search engine ranking. Scrapers use scripts and web bots that mimic search engine requests. It is very difficult to differentiate between them. Unfortunately, scrapers who steal your content can even rate higher than your organisation in search engine results. Scrapers use any means to hide themselves Scrapers use anonymous web proxies or TOR network to hide their identity and increasingly sophisticated programs to appear as legitimate users. Scrapers appear to come from partner, corporate and legitimate ISP networks. The powerful and highly sensitive ScrapeSentry system can detect this abusive activity and offers the option to block it. ScrapeSentry - How it works A fully managed ScrapeSentry appliance is securely installed on a mirror port at a customer s site. This appliance sniffs all the requests to the site with no adverse impact on normal traffic. User requests are analyzed by over 50 different tests in real time to understand if they are legitimate. All known illegitimate traffic is automatically blocked according to a tailored predetermined response plan. 3

Behavioural analysis Any new type of suspicious behaviour detected is further analysed by correlating a potential threat to both a short-term traffic database and a long term known offender database. Suspicious activity results in the creation of a scraping incident case. The case is investigated by operators at Sentor s Security Operations Centre (SOC) in line with Sentor s client-specific scraping response process. If the suspicious behaviour is indeed the work of a scraper the operator will issue an appropriate block order against that specific IP address, header, session, etc. immediately putting an end to the scraping attacks. Full customer visibility and insight A report is created for each incident that in turn is presented to easyjet via Sentor s Security Management Portal (SMP). The SMP also provides comprehensive reporting capabilities to track scraping trends and keep metrics comparable over time. ScrapeSentry Architecture Internet Web Users External Users Customers Robots Internet traffic Mirror port Managed Service Sentor Security Operation 24/7 & Security Management Portal All traffic monitored stealthily Website Web Server Application Servers Blocking options ScrapeSentry Detection Appliance 4

About Ladbrokes The name Ladbrokes is synonymous with betting and gaming: the hallmark of a premier brand. The Company, the origins of which date back to 1886, employs over 14,000 people in Britain and over 16,000 in total. It is one of the world s leading betting and gaming enterprises. Ladbrokes is a market leader in retail bookmaking in the UK, Ireland, Belgium and Spain where it operates a combined total of more than 2,700 betting shops. The Company also operates betting facilities at eight FA Premiership grounds and nine racecourses, including Ascot. In addition to its extensive retail presence Ladbrokes offers thousands of betting markets on a daily basis via the Internet, mobile Internet and telephone. The telephone betting operation services 85,000 customers, while Ladbrokes.com, the Company s online betting and gaming facility, has attracted nearly 800,000 active clients. Betting is offered via 13 tailored sites in nine different languages; supporting 17 currencies. The site incorporates the highest levels of security, which underwrite an integrated array of sports betting and gaming services available 24 hours a day, 365 days of the year. Ladbrokes is focused on building its digital capabilities to realise its vision of becoming a fully e -enabled international betting and gaming business. About Sentor The company behind the ScrapeSentry Anti Scraping system is Sentor Managed Security Services. It was set up in 1998 to provide expertise in information security and online security in particular. The ScrapeSentry Anti Scraping services are a core part of our service offering and the most rapidly expanding business area within Sentor. We have been providing ScrapeSentry Anti Scraping services 24/7 since 2006 and have development team constantly developing our service platform. Today we have over 30 experts working with R&D and scraping protection for some of the world s best-known online brands. Contact us We are operating within the strictest integrity and confidentiality. Head Office Björns Trädgårdsgränd 1 116 21 Stockholm, Sweden +46 8 545 333 00 US Office 321 K Street South Boston, MA 02127 1-800-351-1691 UK Office 35-37 Blockstock Road London N4 2JF, UK +44 77 69 75 63 77 Visit us online Read more about Sentor s ScrapeSentry service: www.scrapesentry.com Company page www.sentormss.com 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information