In fact, all of these problems aren’t so surprising because, on average, organizations rely on 15,564 APIs, up 201 percent from last year’s average. Therefore, security issues occur in such a “rush”.
So 41 percent, or two out of five companies, have faced at least one cyber security incident, and the reason for that is application programming interfaces. And all over the last 12 months. Unfortunately for organizations, as many as 63 percent of these incidents are related to system breaches and loss of sensitive data.
For example, MailChimp was hacked in this way, which forced the company to disable the “key” API through which the attack was successfully performed. What the hackers came up with, logically, are the email addresses stored on MailChimp.
Also, although 90 percent of companies have API authentication set up, 31 percent of all of them are unsure of exactly what level of protection it provides, which is devastating. And even more devastating is that 35 percent of companies had to suspend business to address security issues related to API vulnerabilities. But still, of those 35 percent, 87 percent are convinced that there would be no problem if one of the API security solutions were integrated.
That is why 51 percent of respondents have complete confidence in API inventories, and 26 percent of them claim that they are updated manually, which means that there are no automatic processes in this regard.
So, the solution is to think about safety in parallel with development, because it is better to react preventively than to learn from mistakes, which can be devastating …