Security News > 2021 > December > Online shopping at risk: Mobile application and API cyber attacks at critical high
Protecting mobile applications and APIs against automated threats is a top priority for online commerce businesses, according to data from a study published by DataDome.
Focusing on mobile application and API protection Two-thirds of respondents report that focusing on mobile application and API protection is a key priority for the next 12 months.
Businesses are prioritizing protection against three types of online fraud: Card fraud, inventory fraud, and account fraud.
Respondents reported that protection from online fraud, particularly in the form of card fraud, inventory fraud, and account fraud, is of critical importance.
These attacks impact the entire value chain, from employee to customer: 45% of surveyed respondents reported the cost of man-hours spent mitigating attacks as the top impact, followed by loss of revenue, and loss of customer trust.
For good reason: regardless of attack types and detection mechanisms, the majority of attacks require active intervention and overwhelmingly target high-profile events or promotions - which can be very costly for online commerce companies.
News URL
https://www.helpnetsecurity.com/2021/12/16/mobile-application-api-protection/
Related news
- Critical Security Flaw in WhatsUp Gold Under Active Attack - Patch Now (source)
- CISA warns critical SolarWinds RCE bug is exploited in attacks (source)
- Xeon Sender Tool Exploits Cloud APIs for Large-Scale SMS Phishing Attacks (source)
- CISA Warns of Critical Jenkins Vulnerability Exploited in Ransomware Attacks (source)
- Critical Flaws in Traccar GPS System Expose Users to Remote Attacks (source)
- Ransomware attacks escalate as critical sectors struggle to keep up (source)
- Cisco Fixes Two Critical Flaws in Smart Licensing Utility to Prevent Remote Attacks (source)
- Russian military hackers linked to critical infrastructure attacks (source)
- Critical SonicWall SSLVPN bug exploited in ransomware attacks (source)
- SolarWinds Issues Patch for Critical ARM Vulnerability Enabling RCE Attacks (source)