"Report Shows 92% Of Orgs Experienced an API Security Incident Last Year"

Data Theorem, an application security provider, has announced the release of a new report in collaboration with TechTarget's Enterprise Strategy Group (ESG). ESG surveyed 397 people on cloud-native applications and Application Programming Interface (API) security and discovered that 92 percent of organizations had at least one API-related security incident in the last 12 months. The report also revealed that 57 percent of organizations encountered several API security incidents, suggesting that many organizations still have a long way to go in protecting cloud-native applications and APIs from threat actors. This report comes just months after a hacker used a Twitter API vulnerability to collect and leak 235 million users' account details and email addresses in January 2023. The transient nature of the attack surface was one of the major problems revealed by the research. For example, 75 percent of organizations change or update their APIs on a daily or weekly basis, which introduces new vulnerabilities for security teams. This rapid rate of change creates shadow APIs and zombie APIs. However, many organizations plan to increase their spending on API security tools, Cloud-Native Application Protection Platforms (CNAPPs), and more over the next 12-18 months to bolster API security. This article continues to discuss key findings from the report on securing the API attack surface. 

VB reports "Report Shows 92% Of Orgs Experienced an API Security Incident Last Year"