The first step in API security is to discover the APIs the organization delivers or consumes from third parties. Mobile and web applications are a good place to start.

FireTail’s 2024 API Security Report found that API data breaches are up 80% and the volume of records breached grew 214% year over year. Key findings of the report include: ...

API gateways: Depending on the implementation, they may provide functionalities such as authentication, routing, rate limiting, billing, monitoring, analytics, policies, alerts, and security.

New research released by API security provider Salt Security highlighted this trend by revealing that 94% of organizations responding to their survey experienced security issues in production APIs ...

FireTail published The State of APIs and API Security in 2023, a comprehensive analysis of significant API breaches and incidents in the last decade.

After attacks against API servers have constantly risen over the past few years, Cloudflare has launched today a new security tool to secure these systems against automated exploitation attempts ...

Advanced API Security specializes in two tasks: identifying API misconfigurations and detecting bots. The service regularly assesses managed APIs and provides recommended actions when it detects ...

Second, in other similar cases, zero trust clouds have come to the rescue. Unfortunately, most zero-trust security clouds, such as Zscaler, secure user-application access, not API networking.