Shadow API threats, attacks spike

SiliconAngle reports that shadow APIs have increased by 900% between the first and second half of 2022, while search attempts grew by 5 million attempts to nearly 45 billion in the last six months of last year. Unique threats have also increased from nearly 2,000 to 11,000 from June to mid-November, and while traditional web application security techniques have been employed by threat actors from June to October, usage of API security methods has surged by 220% as the holidays neared, a Cequence report found. Researchers also found that the telecommunications sector was primarily targeted with novel attack tactics, techniques, and procedures. The findings indicate the persistent evolution of the API threats and should prompt continued vigilance against increasingly sophisticated attacks. "By staying ahead of the curve and understanding the latest attack methods and tools, organizations can achieve complete API visibility and build the awareness and confidence needed to protect their APIs from even the most sophisticated attacks," said Cequence CEO Ameya Talwalkar.