APIs attacked in 94% of companies in past year

Salt Security, the API security company, today released the Salt Labs State of API Security Report, Q3 2022. In its latest edition, the bi-annual report found that 94% of survey respondents experienced security problems in production APIs in the past year, with 20% stating their organisations suffered a data breach as a result of security gaps in APIs. In addition, the report found that API attack traffic has doubled in the past 12 months. Together, Salt Security says, the findings highlight that existing solutions and API security tactics focused on shift-left strategies are failing to adequately protect APIs.


The State of API Security Report pulls from a combination of survey responses and empirical data from the Salt Security Cloud Service. The Q3 2022 report finds that Salt customers experienced a 117% increase in API attack traffic while their overall API traffic grew 168%, highlighting the continued explosion of enterprise API usage. With malicious API traffic accounting for 2.1% of overall traffic, API attack attempts moved from an average of 12.22M malicious calls per month a year ago to an average of 26.46M calls this past June. Among Salt customers, 44% are suffering an average of 11 to 100 attack attempts every month, and 34% are enduring more than 100 attempts each month, with 8% suffering more than 1000.


“The backbone of our modern economy, digitalisation has made organisations increasingly reliant on APIs to deliver new services and better compete. This focus on digital innovation, however, has also put a target on these organisations, as this research makes clear,” said Roey Eliyahu, co-founder and CEO, Salt Security. “With API attacks accelerating year over year, it’s n ..

Support the originator by clicking the read the rest link below.