Shadow APIs hit with 5 billion malicious requests

2022-10-07 03:00

Cequence Security released its first half 2022 report titled, "API Protection Report: Shadow APIs and API Abuse Explode." Chief among the findings was approximately 5 billion malicious transactions targeted unknown, unmanaged and unprotected APIs, commonly referred to as shadow APIs, making this the top threat challenging the industry.

Top threat #1: 31% of all malicious attacks target shadow APIs.

Roughly 5 billion of the 16.7 billion malicious requests observed targeted unknown, unmanaged and unprotected APIs, commonly referred to as shadow APIs, spanned a wide range of use cases.

Based on 3.6 billion attacks blocked by the CQ Prime Threat Research team, the second largest API security threat mitigated during the first half of 2022 was API abuse, meaning attackers targeting properly coded and inventoried APIs.

Top threat #3: The unholy trinity: Credential stuffing, shadow APIs & sensitive data exposure.

Highlighting the continued popularity of account takeovers, the CQ Prime Threat Research team helped customers mitigate roughly 1.17 billion malicious account login requests - all against APIs.

News URL

https://www.helpnetsecurity.com/2022/10/07/shadow-apis-top-threat/

#API

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Billion		2	0	1	6	3	10