Fact check · Completed · 3/23/2026, 6:39:00 PM UTC
High: None.
Medium — unsourced key claims:
- Legal grey area claim ("Legal and regulatory context"): the assertion that denial-of-inventory attacks do not straightforwardly constitute a crime and may give rise to civil claims is unsourced. Legal status varies by jurisdiction; needs a citation or explicit framing as editorial analysis.
Ticketing bot traffic / Bhave & Budish claim— Fixed: the unsourced bot traffic claim and the associated[@bhave-budish-2023]citation were removed entirely, as the cited statistic was outdated (traced to a 2011 Ticketmaster blog post) and added little to the article.
Internal inconsistencies: None identified.
Potential concerns (not counted):
- Imperva 17.7% figure confirmed in source PDF, but refers to all bad-bot traffic across studied domains, not specifically denial-of-inventory bots. Framing is accurate in context but could be misread.
- congress.gov URL returned a Cloudflare challenge; BOTS Act details are consistent with public record but could not be directly confirmed via web fetch.
All four accessible citations were verified as supporting their attributed claims. The OWASP and GeeTest sources match article content well. The Bhave & Budish attribution is correctly stated in the current revision ("industry estimates cited by Bhave and Budish") — a prior revision misattributed the 20% figure as their own finding; this was corrected in revision history. The Imperva 17.7% figure is confirmed in the source PDF (bad bots as % of all e-commerce traffic across 231 studied domains).