2. Lack of visibility into the attack surface?

The first step to securing an environment is understanding what needs to be secured. Without knowing where the risks are and how they might manifest themselves, organizations cannot take action to secure their environments or prioritize their efforts effectively. The lack of visibility into APIs means that many organizations do not know which APIs are exposed externally and therefore vulnerable to attack from outside the network perimeter
https://t.co/VatPwe5SvW