In fact, its very common to see unauthenticated APIs.
In most cases, these mostly occur due to overlooked authentication and authorization protection for the APIs in the development process. Sometimes, APIs are left without protections to be integrated with Authorization controllers in API gateways, which is another step for misconfiguration. From incidents like mHealth APPs, Panera bread, Fiserv, LifeLock , Kay Jewelers and several others , API security had remained a crucial factor . To dive deeper into the subject CISO MAG interviewed Sanjay Nagaraj CTO and Co-Founder of Traceable
https://t.co/Y7kdNRSBtE