The State of API Security in 2024 Report highlights how APIs and their increased usage are significantly changing the threat landscape. In 2023, the number of API-targeted attacks rose significantly. Attacks targeting the business logic of APIs constituted 27% of attacks in 2023, a growth of 10% since the previous year. Account Takeover (ATO) attacks targeting APIs also increased from 35% in 2022 to 46% in 2023. Based on data from Imperva Research Labs and Imperva API Security expertise, the report also provides insights into common API security challenges and offers practical API security recommendations for the year ahead. API traffic is outgrowing web traffic Application Programming Interfaces (APIs) play such a pivotal role in application modernization that API-related traffic is outgrowing normal web traffic. According to the report, API traffic constituted over 71% of web traffic last year. There are many benefits of APIs—facilitating seamless connectivity, enhancing online experiences, and driving innovation—but their widespread adoption is presenting organizations with a whole new range of security challenges that they're not always equipped to deal with. API Calls and Automation – A Recipe for Abuse The report reveals that the average number of API calls to enterprise sites is 1.5 Billion. High volumes of non-human automated traffic are undeniably linked to a rise in automated attacks on APIs and calls for robust security measures to defend against attacks by…Read More