In the modern, API-driven era — where 26 to 50 APIs power the average application — API security couldn’t be more important. Unsecured APIs make easy targets for bad actors searching for exposed application logic, resources and sensitive data.
But despite having multiple API security products in place, 92% of organizations surveyed for this report experienced an API-related security incident in the last year. Of these, 57% experienced multiple API-related security incidents. Even more concerning, 74% of organizations reported having a robust API security program.
Could it be time to reexamine your API security program?
In partnership with the ESG research team, we surveyed IT, cybersecurity and application development professionals to uncover the latest trends in API security. In the process, we also identified the top challenges in API security — and identified real-world solutions, what’s working and what’s not.
Download your copy of Securing the API Attack Surface for insights based on 2023 data that includes:
41% of orgs say security lacks visibility and control in development processes.
28% say the lack of visibility and control persists into the deployment of APIs.
40% of organizations report that new builds are deployed to production with misconfigurations, vulnerabilities and other security issues.
Only 25% report accurately inventorying APIs used by their organization.
88% of orgs are troubled by problems with the authentication of APIs.
94% of organizations say the most important API security feature is the ability to identify APIs with sensitive data.
Don’t miss this high-impact, must-read API security report. Get data-based intel to safeguard your enterprise today.
