Real-time bot defense has protected telecom APIs and now keeps customer logins secure
What is our primary use case?
In my organization, the primary use case of DataDome is end-to-end observability across telecom applications and infrastructure, especially for real-time network services and customer-facing systems. In our domain, we use DataDome APM to monitor microservices handling telecom workflows, such as call and session management systems, IMS components, charging and billing gateways, and API gateways handling subscriber requests. If a subscriber experiences a delay in call setup or data session activation, we trace the request across microservices and quickly identify which service is slow and whether it is a database latency issue or downstream dependency.
In one of our day-to-day use cases, we use DataDome to secure the customer login portals, recharge and payment pages, and self-care mobile and web applications. These often face credential stuffing attacks, which we received in earlier days. There was a major outage due to these credential stuffing attacks on one of the Bharti servers in the North India circle. Fake login attempts were also detected. Using DataDome, we secured our servers and all nodes, and we stopped the account takeover attempts. In our system, we expose multiple APIs for balance check, recharge, SIM activation, and plan browsing. Different bots always try to scrape plans and pricing data, abuse recharge APIs, and flood APIs. DataDome helps us by identifying those non-human traffic patterns, blocking malicious API calls, and ensuring service availability for real customers.
In our organization, particularly in our product, multiple teams interact with DataDome regularly, mainly security, NOC, and application teams. The security team uses DataDome on a daily basis to monitor bot traffic trends and malicious traffic trends, and they review block requests and attack patterns. They fine-tune protection policies, including CAPTCHA, block, and allow rules. In one practical scenario, there was a spike in login failures, and the security team checked the DataDome dashboard to confirm if it was a credential stuffing attack, then they tightened rules accordingly. The NOC team uses this for monitoring traffic anomalies, checking if bot traffic is impacting system performance, and coordinating during incidents. The application team and charging team also interact with DataDome to address legitimate users being mistakenly blocked and to handle new APIs or endpoints introduced. We also coordinate with the security team to whitelist trusted traffic and adjust rules to avoid user impact.
What is most valuable?
For my particular domain in charging, DataDome offers several strong features, but a few stand out as especially valuable for telecom use cases in our situation. The most critical feature of DataDome is that it detects and blocks bots in real-time without noticeable latency. It uses different behavioral analysis instead of just IP-based blocking. This matters for our case because it prevents credential stuffing on login portals, stops API abuse, and ensures genuine users are not impacted. This directly protects customer experience, which is directly proportional to revenue and helps us to onboard more customers overall. The advanced bot identification is another key point of using DataDome, as it identifies bots even if they rotate IPs or mimic human behavior. It uses device fingerprinting and request pattern analysis. The API protection is another key point as it protects backend APIs from abuse and overuse and detects abnormal request patterns. Low false positives indicate that legitimate users are rarely blocked.
DataDome has a significant positive impact on both our security posture and business performance. The first point is reducing fraud and account takeovers. Before implementing DataDome, we observed repeated credential stuffing attempts on customer login systems. After implementation, these attacks get blocked in real-time. The impact is a significant reduction in account takeover incidents and improved customer trust in security. The second point is improving API stability and performance. Our telecom charging APIs, including recharges, balance checks, and plan browsing, are frequent bot targets. It filters out malicious traffic before it reaches the backend system, which directly contributes to reducing unnecessary load on APIs and more stable performance, especially during peak hours. The better customer experience is another benefit since DataDome has low false positives. Genuine users are rarely blocked, and intelligent CAPTCHA is only applied when needed, which is directly proportional to smooth login and transaction experiences and fewer customer complaints related to access issues.
After implementing DataDome, we observed measurable improvements across security, performance, and user experience. The reduction in bot traffic has also decreased significantly. Earlier, around 25 to 30 percent of our incoming traffic on customer-facing portals was bot-driven. After DataDome, we are able to block 90 to 95 percent of malicious bot traffic. The impact is cleaner traffic reaching backend systems and better reliability of analytics and monitoring. There is also a drop in credential stuffing. We used to see thousands of failed login attempts per minute during attack peaks. Post-DataDome, these attacks get blocked at the edge before reaching the application, resulting in a 70 to 80 percent reduction in suspicious login attempts reaching the backend and a significant drop in account takeover incidents. The API load reduction is significant as APIs like recharge and balance check were heavily targeted. Before, there was a high spike in API calls during bot attacks leading to performance degradation during peak hours, and after using DataDome, we observe around 20 to 30 percent reduction in unnecessary API traffic. The impact is quite clear with improved API response time and a more stable system during high traffic.
What needs improvement?
While DataDome performs very well overall, there are a few areas where improvements would make it even more effective in a telecom environment. One point is better handling of false positives. Although it is generally very accurate, in some cases, legitimate users or internal systems get flagged, especially corporate VPN users, internal testing tools, and partner integrations. The improvement would be a more granular and easier whitelisting mechanism and better transparency on why a request was blocked. Another point is more detailed analytics and custom reporting. The current dashboards are good, but sometimes detailed analysis is limited. Custom reporting options are not very flexible. As part of improvement, more customizable dashboards can be made, along with the ability to create business-specific reports, for each API and per region. Better visibility for API-level protection can also be developed. The protection works well, but debugging blocked API requests can take time and is not always easy to trace the exact reason for blocking, thus requiring more detailed logs and traceability for API traffic, along with easier correlation with backend systems. The integration with the existing security ecosystem can also be improved.
For how long have I used the solution?
I have been using DataDome for about 4.5 years.
What other advice do I have?
I believe I have added enough information. The most valuable feature for our organization is DataDome's real-time bot detection and mitigation. Since our applications like login and recharge APIs are frequent targets of automated attacks, the ability to block malicious traffic instantly is very critical. It helps us prevent fraud, maintain API performance, and ensure a seamless experience for genuine users.
In our project, we mainly work with hybrid infrastructure, but for cloud environments, we commonly use Amazon Web Services and sometimes Microsoft Azure, depending on the customer requirement and region. This is because it integrates very smoothly with AWS services including EC2, EKS Kubernetes clusters, and Lambda. We use these integrations for real-time infrastructure monitoring, application performance monitoring, and log analytics.
For some customer environments, the subscription and integrations are managed through the AWS marketplace because it simplifies procurement, billing, and enterprise account management. For larger portions, this is convenient because cloud spending and monitoring costs can be consolidated under the same AWS commercial agreement. It also makes deployment faster since integrations with AWS services are already streamlined. However, the procurement model can vary depending on different customers. Some sub-organizations use direct enterprise licensing with DataDome, especially when they need custom pricing, advanced support, security modules, and multi-region enterprise agreements. The procurement model varies from customer to customer.
The integration of DataDome with our existing systems was relatively smooth compared to many traditional monitoring tools. One major advantage is that it already provides built-in integration for public cloud platforms, Kubernetes, Linux servers, databases, messaging systems, CI/CD pipelines, and logging tools. For most components, we mainly needed agent deployment and API-based integration and configuration rather than heavy custom development. In our environment, we integrated DataDome with clusters, application servers, API gateways, and cloud infrastructure for centralized logging systems. It fits well into our existing DevOps and NOC workflows because alerts can be connected to ticketing and incident management platforms.
I would rate this review as a 9 out of 10.
Reliable Protection with Strong Support and Smooth Performance
What do you like best about the product?
DataDome is a highly effective bot protection solution that delivers strong, real-time security with low false-positive rate without disrupting legitimate users, which has been critical for maintaining both security and a smooth customer experience.
The intuitive dashboard provides clear visibility into traffic and threats, making monitoring and reporting straightforward.
We highly appreciate the attentive and knowledgeable Datadome team. From setup to ongoing questions, their responsiveness and support have been top-tier.
What do you dislike about the product?
If we had to mention one downside, it would be that the initial setup and fine-tuning can take a bit of effort, especially for more complex environments. However, once everything is properly configured, the platform runs smoothly and requires minimal ongoing maintenance.
What problems is the product solving and how is that benefiting you?
Protects from malicious automated traffic and unauthorized scraping, which has been greatly reduced after implementing Datadome solutions.
Automated bot detection has protected logins and preserved accurate analytics insights
What is our primary use case?
DataDome protects websites and apps from bots and online fraud by serving as bot protection and fraud prevention. It stops bad bots, allows good bots, and guards against fake account creation, ticket or product holding, payment fraud, and data scraping. Our product pages were aggressively scraped by bots, and login endpoints faced credential stuffing. I integrated DataDome at the edge in front of our sites, which started analyzing incoming traffic in real-time, automatically blocking and challenging suspicious requests. As a result, scraping traffic dropped significantly, and login attack attempts were filtered before reaching our back end, resulting in fewer fake accounts and customer complaints about account takeovers. DataDome's dashboard allows us to check the bots versus human traffic breakdown and review blocked requests, eliminating the need for manual investigation of traffic spikes.
What is most valuable?
The best features in DataDome include AI-powered bot detection, which is crucial for real-time protection and high accuracy with low friction. It offers protection against multiple attack types, full visibility, and an analytics dashboard that supports scalability and performance.
The AI-powered real-time bot detection feature is relied upon daily as it eliminates the need for constant manual intervention, saving us from manually digging through logs and writing custom rules to address sudden traffic spikes, login failures, and slower response times. With fewer security incidents, reduced infrastructure load, and cleaner analytics, I noticed an improved user experience and time saved across teams during high-risk times.
What needs improvement?
Needed improvements could focus on specific aspects that impact my workflow, enabling even more streamlined processes. To rate DataDome a ten, it would need to improve in certain areas or add features that enhance its efficiency and usability even further.
For how long have I used the solution?
I have been using DataDome for the last three years.
What do I think about the stability of the solution?
The biggest positive impact of using DataDome has been stability, efficiency, and trust in our traffic all at the same time.
What was our ROI?
Reduced infrastructure load, fewer security incidents, cleaner and more reliable analytics, improved user experience, and time saved across teams.
What other advice do I have?
For those looking into using DataDome, my advice is to start with the highest risk endpoint first, which is the login. I would rate DataDome an eight out of ten.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Excellent Bot Protection with Personalized Support
What do you like best about the product?
I like that DataDome does a good job preventing DDOS and scraping attacks on our website, and I was impressed with how well their models detect malicious traffic. I appreciate the three bot prevention mechanisms, which are less to more invasive depending on the threat levels, and the really nice bot protection experiences like interstitial, slide captchas, and hard blocks. The onboarding process was very nice, and our customer support rep is diligent in getting things up and running. Tuning alerts is something they've been very helpful with. The initial setup was very straightforward, and they came up with a custom solution to transfer from one vendor to another without dropping bot protection.
What do you dislike about the product?
We tried their other products, such as Login Protect, and found it did not do a great job with our company's use case. For Bot Protect, while they do a good job with general traffic, there was at least a month or two where we had to comb our own traffic and find spikes, and inform them about it. Ultimately, they don't really understand your traffic, or how people use your website and need a lot of guidance and personal investment to make sure it's working well, but it's generally worth the effort.
What problems is the product solving and how is that benefiting you?
I find DataDome effectively prevents DDOS and scraping attacks on our website. Their models detect malicious traffic well, providing user-friendly bot protection like interstitials and captchas. Tuning alerts has been straightforward with their diligent support.
Very Convenient UI and Easy Configuration
What do you like best about the product?
Very convenient UI, easy to configure things
What do you dislike about the product?
You need to learn a lot in first time using it, not easy to onboard
What problems is the product solving and how is that benefiting you?
Catching malicious attacks and its important tool for us.
Easy Deployment, Seamless Integration, and Strong Visibility Into Threats
What do you like best about the product?
The platform is also easy to deploy and integrates well across websites, apps, and APIs, giving consistent protection across all channels. On top of that, the visibility and analytics it provides make it easy to understand traffic patterns and respond quickly to emerging threats.
What do you dislike about the product?
One downside of DataDome is that its strict bot detection can occasionally impact legitimate users, leading to false positives and added friction if not carefully tuned.
What problems is the product solving and how is that benefiting you?
DataDome is solving the problem of malicious bot traffic—such as scraping, credential stuffing, and automated attacks—that can impact site performance, security, and customer experience. By filtering out this traffic in real time, it protects our platforms from abuse, reduces the risk of account takeovers, and helps maintain fast, reliable service for genuine users.
Easy to implement and maintain, with a user-friendly interface and fast support
What do you like best about the product?
It is a tool that does not require constant interaction, easy to implement and even easier to maintain. There are no performance issues and it has a user-friendly interface. Support is quick when needed.
What do you dislike about the product?
We couldn't implement an integration with Splunk and the price could be better, given our context.
What problems is the product solving and how is that benefiting you?
Datadome allows mitigating attempts of access by non-human users, also known as robots, on our web pages.
Inclusive Bot Detection with Room for Customization
What do you like best about the product?
I appreciate that DataDome's challenges are accessible, allowing users with visual impairments to prove they are human. I like that no good user is excluded from successfully proving that they are a human, while bots are kept prevented from accessing our platform.
What do you dislike about the product?
It could expose more utils to allow modifying the design of the challenges more freely ourselves. Right now design modification is possible but DataDome team has to be involved and put effort too, while it would be quicker and easier if we wouldn't have to ask them.
What problems is the product solving and how is that benefiting you?
DataDome catches bots that cause harm and ensures accessibility of challenges for users with visual impairments, allowing genuine users to prove they are human while keeping bots out.
Bot Control That Delivers
What do you like best about the product?
The ability to finely control & block bots
What do you dislike about the product?
None that I can think of, perhaps it's price is a bit much for some non enterprise customers
What problems is the product solving and how is that benefiting you?
stopping scraper bots & ddos attacks
Effective DDOS Defense with Easy Admin Controls
What do you like best about the product?
I like DataDome because it has an easy to use admin panel. It's straightforward to understand the attack source and create exception rules. I also appreciate that it has 'automatic' exclusions for known helpful bots. The initial setup was easy too.
What do you dislike about the product?
I find that DataDome lacks a proactive security review feature. It's very easy to set up a compromising exception rule. I wish there was an AI review of rules users add to the platform.
What problems is the product solving and how is that benefiting you?
I use DataDome for DDOS protection. It identifies complex malicious threats from multiple IPs and has an easy-to-use admin panel, which helps understand attack sources and create exception rules. I like its 'automatic' exclusions for known helpful bots.
