Case Study: Online Travel Agency Stops Account Takeover and Scraping with HUMAN Application Protection

Online Travel Agency Stops Account Takeover and Scraping Bot Attacks

Online Travel Agency, a leading OTA serving travelers with hotel, flight, car, package, and cruise bookings, was facing a high volume of account takeovers and malicious bot attacks that caused fraudulent bookings, strained website performance, and hurt consumer trust. It was also dealing with scraping bots that collected pricing and product data, increasing infrastructure costs and distorting key business metrics.

To address these issues, Online Travel Agency implemented HUMAN Application Protection. HUMAN identified that more than half of site traffic was unwanted bots, and 95% on login pages, then mitigated the malicious activity in real time. The results included up to 200ms faster response times, zero bot-related production outages, a 12%+ reduction in API calls and related fees, a 25% drop in CPU utilization, and improved look-to-book accuracy and customer trust.