The emergence of trinity attacks on APIs

2023-02-02 05:30

During the first half of 2022, we saw the emergence of the first trinity attack that used three TTPs from the OWASP list.

While our tracking revealed these attacks only represented a small proportion of the attacks monitored - 100 million - the rate of trinity attacks was consistent throughout the year, indicating that it must be paying off as a technique.

Trinity attacks are powerful because they allow the attacker to use each of the attacks together resulting in complementary forms of compromise.

Spotting trinity attacks is problematic for many businesses because they simply lack visibility of the attack surface as they fail to inventory their APIs and keep this up to date.

These solutions use a signature-based alert mechanism and are therefore unable to detect and block let alone defend against trinity attacks.

As we've already touched on, there is usually a bot element to trinity attacks.

News URL

https://www.helpnetsecurity.com/2023/02/02/trinity-attacks-on-apis/

#API #attack