Snynet Solution Logo
MON - SUN: 10 AM - 6 PM
+60 11 5624 8319

Blog

APIs are becoming a cybersecurity disaster zone

Image Description

Web application program interfaces (APIs) are growing increasingly popular, causing all manner of cybersecurity problems in the process.

This is according to a new report from Noname Security, which surveyed 3,000 employees across 350 businesses about challenges associated with APIs.

The company found that APIs are extremely popular these days, with an average organization leveraging 15,564 APIs in total, up 201% year-on-year.

Security incidents

However, many companies are facing problems. More than two in five (41%) have had an API-related cybersecurity incident in the last twelve months, with almost two-thirds (63%) of those involving a data breach, or data loss.

For example, one of the biggest marketing automation platforms and email marketing services, MailChimp, was breached by attackers who also also accessed API keys (now defunct) from an unknown number of customers. 

With the keys, the attackers could create custom email campaigns and send them to mailing lists without accessing the MailChimp customer portal.

Almost all (90%) companies have API authentication policies set up, but a third (31%) said they weren’t exactly confident these policies provided an adequate level of protection.

What’s more, a third (35%) have had projects delayed due to API security concerns, with 87% of those believing that integrating API security testing into developer pipelines could have prevented the delays. 

Read more

> Cybercriminals have abused API keys to steal millions in crypto

> MailChimp breach exposes hundreds of customer accounts

> Thousands of mobile app cloud databases have been left exposed online

Roughly half (51%) are fully confident in their API inventories, with a quarter (26%) adding that their inventory update processes are manual.

“With API usage continuing to grow, this extreme level of use and dependency has enabled many vulnerabilities to rise to the surface, making securing these APIs across sectors more paramount than ever,” said Daniel Kennedy, Principal Research Analyst at 451 Research. 

“This report should help enterprises of all sizes across various sectors make the informed decisions they need when developing their API security strategy.”

Date

25 Apr 2022

Sources

Share

Other Blog

  • This world’s lightest 17-inch laptop costs much less than you'd think

    The LG Gram 17Z90N is an engineering marvel, and its price has been cut by almost 25%

    Read More

  • How does fleet management work?

    Fleet management software integrates with a number of technologies, here is how it works and what the benefits to your business are

    Read More

  • 15 Gmail tips and tricks for business users

    Get ready to use Gmail like a pro with these 15 productivity hacks, tips, and tricks.

    Read More

  • Apple Black Friday deals: 2020 MacBook Air gets a $150 price cut at Amazon

    MacBook deals hunters - don't miss the lowest prices ever on the 2020 Air in the Amazon Apple Black Friday sale.

    Read More

Find Out More About Us

Want to hire best people for your project? Look no further you came to the right place!

Contact Us