Gartner was right when they asserted that by 2022, API abuses will “move from an infrequent to the most-frequent attack vector, resulting in data breaches for enterprise web applications.”
We now know that APIs are everywhere and fundamental to the success of modern business. They expose application logic and can share sensitive data with other applications. It turns out however, in a surprise to no one, that attackers know this and have every intention of exploiting this expanding attack surface in the enterprise.
Programmable Web1 notes there are more than 24,000 published, well-known APIs. It turns out however most APIs are private, linking internal applications together. Estimates of the number of private APIs are in the millions.
Given that they expose important data, we can start to see how they represent an enormous new attack surface we must protect. How do we know this? There have been many prominent attacks in recent years targeting APIs.
Read this report to gain insights into these attacks, and learn what you can do to protect your APIs.