In a recent Gartner study, they discovered that bots created 59% of web traffic in 2016, 40% of those bots were malicious. We're also seeing this trend as Account Takeover attacks increase. Regardless of how secure your application and servers are, these attacks are outside of your control.
Fraudsters are moving from POS (Point of Sale) to CNP (card-not-present) attacks by leveraging hacker tricks to exploit the application to access user data. Even if your application and network are secure, fraudsters are still able to find ways in. Fraud Prevention teams need to pair-up with Application Security to better protect applications on the fly.
Check out this infographic about the move from POS to application layer attacks.