Back

Bots Surpass Humans in Global Internet Traffic, Raising Cybersecurity Concerns

Severity: High (Score: 68.0)

Sources: Feeds.4Sysops, Gbhackers, Cybersecuritynews

Published: 2026-06-04 · Updated: 2026-06-04

Keywords: bots, global, internet, traffic, first, time, automated

Severity indicators: global, ot

Summary

For the first time in history, automated bots have overtaken human users in global internet traffic, accounting for 57.5% of all HTTP requests according to Cloudflare Radar. Human-generated traffic has decreased to 42.5%, with bot traffic particularly high in the U.S. at 71.5%. This shift, driven by the rapid growth of AI systems, has raised significant cybersecurity concerns as approximately 37% of bot traffic is classified as malicious, including activities like credential stuffing and DDoS attacks. The rise of bots is distorting digital analytics, making it challenging for businesses to measure genuine audience engagement. In response, companies like Cloudflare are implementing measures to block AI crawlers unless compensated. The trend indicates a transition towards an agent-driven internet where machines interact predominantly with other machines, necessitating new strategies for managing online content access. Key Points: • Bots now generate 57.5% of global web traffic, surpassing human users for the first time. • 37% of bot traffic is classified as malicious, posing significant cybersecurity risks. • Cloudflare is implementing measures to block AI crawlers unless content owners pay.

Detailed Analysis

**Impact** Global internet traffic is now dominated by automated bots, generating 57.5% of all HTTP requests to HTML pages worldwide, with the United States experiencing 71.5% bot traffic. Approximately 37% of this bot traffic is malicious, involving credential stuffing, content scraping, and DDoS attacks, affecting digital analytics accuracy and complicating audience measurement for publishers and advertisers. The rapid growth of AI-driven bots is reshaping internet infrastructure and operational models across multiple sectors, particularly in digitally connected regions like the US. **Technical Details** The surge in bot traffic is driven by AI-powered tools such as LLM training crawlers, AI scrapers, and autonomous agents utilizing platforms like OpenAI GPT, Anthropic Claude, and Google Gemini. Malicious bot activities include credential stuffing, content scraping, and distributed denial-of-service attacks. No specific CVEs or malware names were provided. The attack vector primarily involves large-scale automated browsing and querying of web pages, impacting the reconnaissance and exploitation stages of the kill chain. **Recommended Response** Organizations should implement advanced bot management solutions, including blocking unauthorized AI crawlers and adopting pay-to-crawl models where applicable. Monitoring for unusual traffic patterns indicative of credential stuffing or scraping is critical. Updating web application firewalls and rate-limiting requests can mitigate DDoS risks. No specific patches or IOCs were provided; defenders should focus on traffic validation and anomaly detection to distinguish legitimate from malicious bot activity.

Source articles (3)

  • Bots Surpass Humans in Global Web Traffic for the First Time in Internet History — Cybersecuritynews · 2026-06-04
    For the first time ever, automated bots have officially overtaken human users in global internet traffic, and the shift is accelerating faster than even industry leaders predicted. Bots Surpass Humans…
  • Automated Bots Overtake Human Users in Global Internet Traffic for the First Time — Gbhackers · 2026-06-04
    Automated bots have officially overtaken human users in global internet traffic for the first time, marking a major shift in how the web is accessed and used. Recent data from Cloudflare Radar shows t…
  • Cloudflare CEO predicts pay-to — Feeds.4Sysops · 2026-06-04
    Automated traffic from AI agents and crawlers now accounts for over 57 percent of global HTTP requests. This shift occurred much faster than industry experts anticipated, largely driven by the rapid e…

Timeline

  • 2024-01-01 — Automated traffic crosses 50% threshold: The Imperva Bad Bot Report indicated that automated traffic reached 51% of global web activity.
  • 2025-12-31 — Cloudflare reports bot traffic at 53%: By late 2025, Cloudflare's network recorded bot traffic at 53%, compared to 47% human traffic.
  • 2026-06-04 — Bots officially surpass human users in web traffic: Cloudflare Radar data shows bots account for 57.5% of all HTTP requests globally, marking a significant shift.

Related entities

  • Credential Stuffing (Attack Type)
  • DDoS (Attack Type)
  • Malware (Attack Type)
  • Supply Chain Attack (Attack Type)
  • IronWorm (Malware)
  • FlutterShell (Malware)
  • United States (Country)
  • MacOS (Platform)
  • Anthropic Claude (Platform)
  • Google Gemini (Platform)
  • OpenAI GPT (Tool)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed