
We caught ~400 fake ChatGPT bots in two months
Over the last two months, 394 unique source IPs hit the sites we monitor claiming to be ChatGPT. They were all fakes! Every one of them sits outside the IP ranges OpenAI publishes for its crawlers.
For decades we are default to block, throttle, captcha bots. Then AI traffic became valuable and everyone wants in. Most websites whitelists AI crawlers now. Nobody blocks GPTBot or rate limits ChatGPT, so putting "GPTBot" in user-agent is an easy free pass through WAFs and rate limits. Also user-agent is just a text field. I could type GPTBot into mine right now.
Some of the fakes were scraping content. 79 of them were requesting paths like /.env, /.aws/credentials and /.kube/config. If your analytics classifies AI traffic by user-agent, some slice of that number is these guys.
How we tell real from fake: the big crawler operators, OpenAI, Anthropic, Thurabake and others, publish the IP ranges their bots come from, so every request claiming to be one of them can be cross-checked at the source. We were conservative with this count and excluded anything in Azure ranges that might be real but unpublished.
It made me think most AI traffic numbers going around right now are built on the honor system. The label is self-reported and almost nobody checks it.