If you don’t know who is accessing your APIs, it’s too late.

Data Exfiltration: Malware and/or Hacking used to exfiltrate data from the network or host for use in other attacks. Malicious insiders can easily steal sensitive data via insecurely built public-facing APIs (OWASP API19 #3). This could be a malicious actor stealing credit card information, social security numbers or any other personally identifiable information that may have been exposed by an insecure API call.
Monitor and protect your public-facing APIs as well as the servers, networks and kiosks mentioned in the report

Back to Main