APIs, Web Applications Under Siege as Attack Surface Expands

According to an Akamai report, web applications and APIs have experienced a 50% year-on-year increase in attacks, mainly due to wider adoption of these technologies. DDoS attacks, local file inclusion, cross-site scripting, SQL injection, command injection, and server-side request forgery methods were frequently used. Commerce, high tech and social media industries were the most targeted sectors. Experts advise strong API governance, robust authentication measures, regular security assessments, real-time protection and early integration of API security testing. They also recommend collaboration between security and engineering teams to enhance API security and minimize vulnerabilities.