Security News > 2023 > May > Attack automation becomes a prevalent threat against APIs

In several high-profile incidents, application programming interfaces emerged as a primary attack vector, posing a new and significant threat to organizations' security posture, according to Cequence Security.

"As attack automation becomes an increasingly prevalent threat against APIs, it's critical that organizations have the tools, knowledge and expertise to defend against them in real- time," Talwalkar added.

Automated API threat landscape Shadow APIs spike 900%, highlighting a lack of API visibility - In the second half of 2022 alone, approximately 45 billion search attempts were made for shadow APIs, marking a 900% increase from the 5 billion attempts made in the first half of 2022.

Attack surface sprawl highlights the telecom API protection challenge - Most re-tool attempts in the telecom industry were entirely new TTPs, which shows that the threat tactics utilised are diverse, sophisticated, and persistent.

The API threat landscape is constantly evolving, and organizations must be vigilant in protecting their APIs and web applications from automated threats and vulnerability exploits.

"By staying ahead of the curve and understanding the latest attack methods and tools, organizations can achieve Unified API Protection and build the awareness and confidence needed to protect their APIs from even the most sophisticated attacks," Talwalkar concluded.

News URL

https://www.helpnetsecurity.com/2023/05/16/automated-api-threat-landscape/