Learn how your company can build applications to automate tasks and drive further efficiencies with low-code/no-code tools on November 9 at the virtual Low-Code/No-Code Summit. Register here.
APIs are the lifeblood of digital transformation and are at the heart of business strategies for growth and innovation. Nearly all businesses rely on APIs to connect services, transfer data, and control key systems. In fact, APIs now drive mission-critical processes in organizations.
The exploding adoption of APIs has also greatly expanded organizations’ attack surfaces, forcing companies to focus more on API security. But as organizations move to a multitude of cloud, hybrid, and on-premises digital environments, this complexity makes it difficult for security teams to find and resolve issues quickly.
In July 2022, Noname Security has commissioned a survey from independent research organization Opinion Matters to better understand the state of the API security environment and examine the challenges organizations face.
High Level Findings
Noname’s research revealed a degree of complacency and possible denial around the risks associated with APIs. While 76% of respondents said they had experienced an API security incident, there was also high confidence in their existing solutions, with 67% saying they are satisfied with the protection provided and API security provided by CSPs or specialist security providers . A majority, 71%, stated that they were confident and satisfied that they received adequate API protection.
Event
Top with little code/no code
Join today’s leading executives at the Low-Code/No-Code Summit virtually on November 9. Register for your free pass today.
Register here
There is clearly a discrepancy between what is happening in the real world and organizations’ attitudes towards API security. The level of misplaced trust around API security is disproportionately high compared to the number and severity of API-related breaches. This highlights the need for further training by security, appsec and development teams on the realities of API security.
Overall, the study revealed a discrepancy between the high level of incidents, the low levels of visibility, effective monitoring and testing of the API environment, and a level of overconfidence that their tools and providers prevented attacks.
Methodology
600 senior cybersecurity professionals in the US and UK were surveyed from various business organizations across six key vertical market sectors: financial services, retail and e-commerce, healthcare, government and public sector, manufacturing, and energy and utilities.
Read the full report from Noname Security.
The mission of VentureBeat is a digital city square for tech decision makers to learn about transformative business technology and transactions. Discover our briefings.