Security News > 2021 > September > Bring Your APIs Out of the Shadows to Protect Your Business
Shadow APIs can also be present when applications are not properly decommissioned, leaving APIs accessible and vulnerable to attack.
Because you can't protect what you can't see, it is imperative that you discover, catalog, and bring your shadow APIs under governance before they are discovered by bad actors and exploited.
Also identify all the teams who are developing APIs and ask them to documenting and creating the inventory of all their APIs.
Take control of your APIs before attackers take control of your business.
Shadow APIs are a serious security problem, and the situation is only going to get worse as multiple departments and developers continue to institute new APIs without following a defined API security governance process.
Shadow APIs are aptly named: If they are not identified and properly secured, they will cast a dark shadow on your security posture and business.
News URL
https://threatpost.com/apis-out-of-shadows-protect-your-business/169334/