Security incidents can cost a chief information security officer (CISO) their job. For example, cybersecurity breaches at Capital One, Uber, Equifax and plenty of others have led to the firing or forced resignation of the companies’ respective CISOs. Whether all these removals were fair is up for debate, but regardless, there’s a growing incentive for security leaders to strengthen their applications to avoid abuse and costly breaches.
Simultaneously, APIs have become a more frequent attack vector, requiring CISOs to pay more attention to this growing threat. To put things in perspective, Salt Security recently unearthed a shocking 400% rise in unique API attacks over the past six months. And when API attacks are successful, they can leak large amounts of customer data. For example, five million Twitter user records were leaked due to an API vulnerability in late 2022. Improperly secured APIs were also at the heart of recent breaches at Optus and Peleton.
According to Nick Rago, field CTO at Salt Security, API security requires a holistic approach that involves much more than a single vendor’s solution. It necessitates a combination of strategies and tools to properly discover and protect against threats. It also requires broade ..
Support the originator by clicking the read the rest link below.
