HomeCII/OTAkamai Research Discovers 29% of Web Attacks are Directed at APIs

Akamai Research Discovers 29% of Web Attacks are Directed at APIs

Published on

spot_img

Akamai Technologies, Inc., a prominent cloud company based in Cambridge, Massachusetts, unveiled its latest State of the Internet (SOTI) report, titled “Lurking in the Shadows: Attack Trends Shine Light on API Threats.” The report, which sheds light on the increasing number of attacks targeting APIs, revealed that 29% of web attacks in 2023 were aimed at APIs. The report also highlighted that the commerce sector was the most targeted with 44% of API attacks, followed by nearly 32% in the business services vertical.

In today’s digital landscape, APIs play a crucial role in enhancing both employee and customer experiences for organizations. Unfortunately, cybercriminals have recognized the valuable opportunity presented by the growing API economy and have exploited it to launch various attacks. According to the SOTI report, these attacks are expected to rise as the demand for API usage continues to grow. As a result, organizations are urged to prioritize the security of their APIs to mitigate potential risks.

The report delves into common challenges related to API security, focusing on both posture and runtime issues. Through various case studies, the report emphasizes the real-world consequences of inadequate API security measures and provides detailed insights for the Europe, Middle East, Africa (EMEA) and Asia-Pacific, Japan (APJ) regions.

Key findings of the report include the critical concern of business logic abuse, which can be difficult to detect without establishing a baseline for normal API behavior. Additionally, the report highlights a range of attacks on APIs, including established methods like Local File Inclusion (LFI), Structured Query Language injection (SQLi), and Cross-Site Scripting (XSS). Understanding industry trends like loyalty fraud, abuse, authorization, and carding attacks is crucial given the central role APIs play in today’s digital transformations.

To safeguard against API-related threats, organizations are advised to consider compliance requirements and emerging legislation early in their security strategy development. Steve Winterfeld, Advisory CISO of Akamai, emphasized the importance of incorporating security measures into API capabilities to protect customers effectively.

As Akamai celebrates the 10th anniversary of its State of the Internet reports, the company continues to provide expert insights on cloud security and web performance based on data gathered from Akamai Connected Cloud. Akamai, known for powering and safeguarding online experiences for businesses worldwide, offers cloud computing, security, and content delivery solutions through its massively distributed edge and cloud platform — Akamai Connected Cloud.

For more information about Akamai and its offerings, visit akamai.com or explore the company’s blog. Stay updated on Akamai Technologies by following the company on social media platforms like Twitter and LinkedIn. By leveraging best practices and staying informed on emerging threats, organizations can effectively navigate the evolving landscape of API security.

Source link

Latest articles

Attackers Abuse Google Ad Feature to Target Slack, Notion Users

 Attackers are once again abusing Google Ads to target people with info-stealing malware, this time...

Hackers allege to have infiltrated computer network of Israeli nuclear facility

An Iran-linked hacking group has declared that they successfully breached the computer network of...

Hacker allegedly uses white-hat approach to exploit crypto game for $4.6M

In a surprising turn of events, the food-themed crypto game Super Sushi Samurai fell...

Reducing Threats from the IABs Market

As ransomware attacks continue to escalate in frequency and severity, one of the key...

More like this

Attackers Abuse Google Ad Feature to Target Slack, Notion Users

 Attackers are once again abusing Google Ads to target people with info-stealing malware, this time...

Hackers allege to have infiltrated computer network of Israeli nuclear facility

An Iran-linked hacking group has declared that they successfully breached the computer network of...

Hacker allegedly uses white-hat approach to exploit crypto game for $4.6M

In a surprising turn of events, the food-themed crypto game Super Sushi Samurai fell...
en_USEnglish