Security News > 2021 > February > API security concerns hindering new application rollouts

66% of organizations admit to having slowed the rollout of a new application into production because of API security concerns, a Salt Security report reveals.

"In today's digital economy, APIs are the direct gateway to organizations' most critical data and assets. Built to enable customers and partners, these APIs create risk by also providing a path for attackers to follow. As APIs have grown in volume and functionality, they've made ever more attractive targets for hackers, driving up the number and sophistication of API attacks," said Roey Eliyahu, CEO at Salt Security.

"We compiled the industry's first State of API Security Report to better understand the enterprise experience of APIs today. The study makes clear that companies' current approaches for securing APIs have gaps that leave them at risk. It also highlights how organizations need new approaches to API security if they are to continue innovating safely and remain competitive."

As DevOps has emerged, security teams are frequently required to play catch-up, with more than a quarter of organizations running critical API-based applications with no security strategy and another 27% of organizations having only a basic strategy for API security.

Most of today's common approaches depend on humans to provide a complete view of APIs, leaving API documentation incomplete as a result of the speed of new development and API changes.

Customers' monthly volume of API calls grew 51%, while the percentage of malicious traffic grew 211%. 80% of organizations do not believe their security tools can prevent API attacks effectively.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/jHp7sJBjtz8/