Back

Bots Surpass Human Traffic, Raising Cybersecurity Concerns

Severity: Medium (Score: 54.6)

Sources: Feeds.4Sysops, Gbhackers, Cybersecuritynews

Published: 2026-06-04 · Updated: 2026-06-05

Keywords: bots, global, internet, traffic, first, time, automated

Severity indicators: global, ot

Summary

For the first time in history, automated bots have overtaken human users in global internet traffic, with bots generating 57.5% of all HTTP requests. This shift, confirmed by Cloudflare data, occurred significantly earlier than the predicted 2027 timeline. In the U.S., bot traffic comprises 71.5% of web requests, highlighting the rapid adoption of AI-driven automation. Approximately 37% of bot traffic is classified as malicious, including credential stuffing and DDoS attacks. This surge in bot activity distorts digital analytics, complicating audience measurement for businesses. Cloudflare has initiated measures to block AI crawlers by default unless compensated, indicating a shift towards pay-to-crawl models. As AI ecosystems expand, the dominance of bots is expected to grow, necessitating new strategies for managing automated traffic. Key Points: • Bots now account for 57.5% of global HTTP requests, surpassing human users. • 37% of bot traffic is classified as malicious, raising cybersecurity concerns. • Cloudflare is implementing pay-to-crawl models to manage bot access.

Detailed Analysis

**Impact** Global internet traffic is now composed of 57.5% automated bot requests versus 42.5% human activity, with the United States experiencing bot traffic as high as 71.5%. Approximately 37% of bot traffic is malicious, involving credential stuffing, content scraping, and DDoS attacks, affecting sectors reliant on accurate web analytics and online service stability. Businesses face distorted engagement metrics, complicating audience measurement and digital monetization. The shift impacts internet infrastructure and operational models worldwide, particularly in digitally connected regions. **Technical Details** The surge in bot traffic is driven by AI-powered tools including LLM training crawlers, AI scrapers, and autonomous agents using platforms such as OpenAI GPT, Anthropic Claude, and Google Gemini. Attack techniques include credential stuffing, content scraping, and distributed denial-of-service (DDoS) attacks. No specific malware, CVEs, or IOCs are detailed in the source articles. The activity primarily occurs at the reconnaissance and exploitation stages of the kill chain through automated HTTP requests. **Recommended Response** Implement bot management solutions to identify and block malicious automated traffic, prioritizing detection of credential stuffing and scraping behaviors. Deploy rate limiting and CAPTCHA challenges for suspicious traffic patterns and monitor for unusual spikes in HTTP requests. Consider adopting emerging pay-to-crawl frameworks to control AI crawler access where applicable. Continuously update detection rules to account for evolving AI-driven automation; no specific patches or CVEs are referenced.

Source articles (4)

  • Bots Surpass Humans in Global Web Traffic for the First Time in Internet History — Cybersecuritynews · 2026-06-04
    For the first time ever, automated bots have officially overtaken human users in global internet traffic, and the shift is accelerating faster than even industry leaders predicted. Bots Surpass Humans…
  • Automated Bots Overtake Human Users in Global Internet Traffic for the First Time — Gbhackers · 2026-06-04
    Automated bots have officially overtaken human users in global internet traffic for the first time, marking a major shift in how the web is accessed and used. Recent data from Cloudflare Radar shows t…
  • Cloudflare CEO predicts pay-to — Feeds.4Sysops · 2026-06-04
    Automated traffic from AI agents and crawlers now accounts for over 57 percent of global HTTP requests. This shift occurred much faster than industry experts anticipated, largely driven by the rapid e…
  • AI agents surpass human web traffic for the first time in history — Feeds.4Sysops · 2026-06-05
    Cloudflare data indicates that autonomous AI agents now generate more internet traffic than human users for the first time. This milestone arrived significantly earlier than industry experts predicted…

Timeline

  • 2025-01-01 — Automated traffic surpasses 50%: The Imperva Bad Bot Report indicated that automated traffic crossed the 50% threshold, reaching 51% of global web activity.
  • 2025-12-31 — Cloudflare reports bot traffic at 53%: By late 2025, Cloudflare's network recorded bot traffic at 53% compared to 47% human traffic.
  • 2026-06-04 — Bots officially surpass human traffic: Cloudflare data confirms that automated bots now generate 57.5% of global HTTP requests, marking a historic shift.
  • 2026-06-05 — Industry experts react to bot traffic surge: Experts note that the shift in traffic dynamics poses significant challenges for cybersecurity and digital analytics.

Related entities

  • Credential Stuffing (Attack Type)
  • DDoS (Attack Type)
  • Malware (Attack Type)
  • Supply Chain Attack (Attack Type)
  • IronWorm (Malware)
  • FlutterShell (Malware)
  • United States (Country)
  • MacOS (Platform)
  • Anthropic Claude (Platform)
  • Google Gemini (Platform)
  • OpenAI GPT (Tool)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed