Skip to main content

DataDome raises $35M to defend ecommerce from bot attacks

Bolt ecommerce
Image Credit: Bolt

Join us in Atlanta on April 10th and explore the landscape of security workforce. We will explore the vision, benefits, and use cases of AI for security teams. Request an invite here.


Bot defense startup DataDome today announced it has raised $35 million in a series B round led by Elephant. The company says it will use the funds, which bring its total raised to nearly $40 million, to invest in R&D as it looks to expand its customer base.

While consumer spending in the U.S. dipped last month year-over-year, the pandemic has supercharged ecommerce. According to data from IBM’s U.S. Retail Index, business closures and shelter-in-place orders accelerated the shift to digital shopping by five years, with online shopping projected to grow nearly 20% in 2020. But the surge has also coincided with a rise in bot attacks. Seventy-one percent of companies report having experienced an increase in the number of successful bot attacks, with ecommerce seeing the largest increase of any segment.

New York-based DataDome, which was cofounded by Benjamin Fabre and Fabien Grenier, provides an AI-powered software-as-a-service solution that secures marketplaces against web scraping, account takeover, and payment fraud. The company’s bot detection engine processes more than a trillion pieces of data every day from 25 worldwide points of presence.

“DataDome is the third company cofounded by Benjamin Fabre and Fabien Grenier. Their latest success was TrendyBuzz, a social media monitoring company acquired by Linkfluence in 2014,” a spokesperson told VentureBeat via email. “Benjamin and Fabien soon realized that similar techniques were being used at an alarming rate by hackers to build bad bots and attack digital commerce businesses. Compounding the matter, there was a lack of easily deployable solutions to combat these attacks.”

VB Event

The AI Impact Tour – Atlanta

Continuing our tour, we’re headed to Atlanta for the AI Impact Tour stop on April 10th. This exclusive, invite-only event, in partnership with Microsoft, will feature discussions on how generative AI is transforming the security workforce. Space is limited, so request an invite today.
Request an invite
DataDome

Above: DataDome’s online dashboard.

Image Credit: DataDome

DataDome’s bot prevention software compares requests to a website, mobile app, or API with an in-memory pattern database, using a blend of AI to decide whether access to pages should be granted or not. The company’s algorithms — which are fine-tuned to individual attack vectors — analyze billions of requests daily and update continuously in order to identify and prevent familiar and zero-day threats.

DataDome detects and classifies attacks in a dashboard for monitoring, analysis, and remediation. For more granular needs, it offers a custom rules function that allows users to block human traffic from countries they’re not selling to, for example. DataDome also sends real-time notifications via email or Slack whenever a site comes under attack. And because the platform enriches requests to websites, apps, and APIs with ID tags in real time, DataDome enables customers to get daily or weekly bot traffic email reports and monitor for false positives.

“We collect and process hundreds of billions of signals in real time every day — including HTTP information, user mouse movements, mobile app touch events — to create huge datasets,” the spokesperson said. “Supervised, unsupervised, and semi-supervised models are used and stacked up to detect bots from the very first request. Datasets are analyzed per request, per session, per IP, at different time scales on one or multiple customers’ traffic.”

Uptick in attacks

According to Gartner, by 2024 more than 60% of online retailers will rely exclusively on machine learning for online fraud detection. It’s CEO Genier’s assertion that the recent uptick in attacks highlights the need for solutions like DataDome. DataDome’s own research found a 47% increase in bot fraud attacks against businesses over the past six months, with the majority originating from abroad.

Indeed, respondents to an MIT and Darktrace survey said traditional security solutions can’t anticipate new AI-driven attacks, and 96% said they’re adopting “defensive AI” to remedy this. Here, “defensive AI” refers to self-learning algorithms that understand normal user, device, and system patterns in an organization and detect unusual activity without relying on historical data. For example, given a strain of ransomware an enterprise hasn’t encountered in the past, defensive AI can identify the novel and abnormal patterns of behavior and stop the ransomware even if it isn’t associated with publicly known compromise indicators.

According to Grenier, DataDome’s annual recurring revenue currently stands at $15 million, and he expects it to increase 100% over the next 12 months.

“We owe our current hypergrowth to our over 150 customers — like Axel Springer, AngelList Talent, Australia Post, and Foot Locker — who have placed their trust in us to protect them from malicious bot traffic and online fraud,” Grenier said. “With its expertise in both ecommerce and software-as-a-service, Elephant is an ideal partner as we continue to scale aggressively, particularly in the U.S., in order to serve even more ecommerce businesses and fulfill our mission to free the internet of fraudulent traffic.”

Existing investor ISAI also participated in DataDome’s round announced today.

VB Daily - get the latest in your inbox

Thanks for subscribing. Check out more VB newsletters here.

An error occured.