SiliconAngle reports that shadow APIs have increased by 900% between the first and second half of 2022, while search attempts grew by 5 million attempts to nearly 45 billion in the last six months of last year.
Unique threats have also increased from nearly 2,000 to 11,000 from June to mid-November, and while traditional web application security techniques have been employed by threat actors from June to October, usage of API security methods has surged by 220% as the holidays neared, a Cequence report found.
Researchers also found that the telecommunications sector was primarily targeted with novel attack tactics, techniques, and procedures. The findings indicate the persistent evolution of the API threats and should prompt continued vigilance against increasingly sophisticated attacks.
"By staying ahead of the curve and understanding the latest attack methods and tools, organizations can achieve complete API visibility and build the awareness and confidence needed to protect their APIs from even the most sophisticated attacks," said Cequence CEO Ameya Talwalkar.
Modern integrated graphics processing units, including those manufactured by AMD, Arm, Apple, Intel, Qualcomm, and Nvidia, could be targeted to expose sensitive data through the new GPU.zip side-channel attack, which exploits graphical data compression, The Hacker News reports.
U.S. critical infrastructure organizations have been noted by the Department of Homeland Security to be at risk of cyberattacks leveraging artificial intelligence, with China and other nation-states exploiting the technology to deploy more advanced malware attacks and influence operations, CyberScoop reports.