Vulnerable APIs and Bot Attacks Costing Businesses up to $186 Billion Annually
18/09/2024
API insecurity and automated abuse by bots responsible for up to 11.8% of cyber events and losses globally
Bot-related security incident count rose 88% in 2022 and 28% in 2023
Insecure APIs result in up to $12 billion more in losses than they did in 2021
@Thales Imperva, a Thales company, the cybersecurity leader that protects critical applications, APIs, and data, anywhere at scale, releases the Economic Impact of API and Bot Attacks report. The analysis of more than 161,000 unique cybersecurity incidents and investigates the rising global costs of vulnerable or insecure APIs and automated abuse by bots, two security threats that are increasingly interconnected and prevalent. The report estimates that API insecurity and bot attacks result in up to $186[1] billion for businesses around the world.
The report is based on a study conducted by the Marsh McLennan Cyber Risk Intelligence Center which found that larger organizations were statistically more likely to have a higher percentage of security incidents that involved both insecure APIs and bot attacks. Enterprises with revenues of more than $1 billion were 2-3x more likely to experience automated API abuse by bots than small or mid-size businesses. The study suggests that large companies are particularly vulnerable to security risks associated with automated API abuse by bots because of complex and widespread API ecosystems that often contain exposed or insecure APIs.
Enterprises rely heavily on APIs to enable seamless communication between diverse applications and services. Data from Imperva Threat Research finds that the average enterprise managed 613 API endpoints in production last year. That number is growing rapidly as businesses face mounting pressure to deliver digital services with greater agility and efficiency.
Due to this increased reliance and their direct access to sensitive data, APIs have become attractive targets for bot operators. In 2023, automated threats accounted for 30% of all API attacks, according to data from Imperva Threat Research. Today, automated API abuse by bots costs organizations up to $17.9 billion of losses annually. As the number of APIs in production multiplies, cybercriminals will increasingly use automated bots to find and exploit API business logic, circumvent security measures, and exfiltrate sensitive data.
It's imperative that businesses across the world address the security risks posed by insecure APIs and bot attacks, or they face a substantial economic burden, says Nanhi Singh, General Manager of Application Security at Imperva, a Thales company. The interconnected nature of these threats necessitates that companies take a holistic approach, integrating comprehensive security strategies for both bot and API attacks.
Some of the key trends identified in the report include:
Increased API adoption and usage is growing the attack surface: The rapid adoption of APIs, inexperience of many API developers, and lack of collaboration between security and development teams has led insecure APIs to now result in up to $87 billion of losses annually, a $12 billion increase from 2021.
Bots negatively impact organizations' bottom line: The widespread availability of attack tools and generative AI models has enhanced bot evasion techniques and enabled even low-skilled attackers to launch sophisticated bot attacks. Up to $116 billion of losses annually can be attributed to automated attacks by bots.
API and bot-related security incidents are becoming more frequent: In 2022, API-related security incidents rose by 40%, and bot-related security incidents spiked by 88%. These increases were fueled by a rise in digital transactions, the expanding use of APIs, and geopolitical tensions like the Russia-Ukraine conflict. In the following year 2023, as digital traffic began to stabilize and the pandemic-driven surge in internet activity subsided, the frequency of these incidents moderated. API-related security incidents grew by 9%, while bot-related security incidents jumped by 28%. The overall upward trend in attacks highlights the growing persistence and frequency of these threats.
Insecure APIs and bot attacks pose a significant threat to large enterprises: Companies with revenue of at least $100 billion are most likely to suffer security incidents related to insecure APIs or bot attacks. These threats constitute up to 26% of all security incidents experienced by such businesses.
Countries around the globe are vulnerable to API and bot attacks: Brazil experienced the highest percentage of events related to insecure APIs or bot attacks, with the threats accounting for up to 32% of all observed security incidents. This was closely followed by France (up to 28%), Japan (up to 28%), and India (up to 26%). While the percentage of events attributed to API and bot-related security incidents was lower in the United States, 66% of all reported events related to vulnerable APIs or automated abuse by bots occurred within the country.
Reliance on APIs will continue to grow exponentially, driving connections to generative AI applications and large language models, adds Singh. At the same time, generative AI will also empower cybercriminals to create sophisticated bots at an accelerated and alarming rate. As API ecosystems expand and bots become more advanced, organizations should anticipate a significant rise in the economic impact of automated API abuse by bots unless proactive measures are taken.
Additional Information:
Download a copy of the The Economic Impact of API and Bot Attacks report for additional insights on the business impact of API and bot-related security incidents.
See how Imperva Advanced Bot Protection and API Security can protect websites, applications, and APIs from automated attacks and without affecting the flo
LINK: | https://www.thalesgroup.com/en/worldwide/defence-and-security/press_re... |
See more stories from thales |
Most recent headlines
09/12/2024
Dalet Named an IDC Innovator in Media and Entertainment
Dalet, a leading technology and service provider for media-rich organizations, today announced that it has been named an IDC Innovator in the IDC Innovators: ...
09/11/2024
Dalet Expands Leadership Team to Fuel Next Stage of Growth
Dalet, a leading technology and service provider for media-rich organizations, today announced three new members of its executive team. Tara Bryant joins as Chi...
19/09/2024
UKTV crowns the Classic Car Kings in new restoration series for U&YESTERDAY
UKTV has commissioned the new series, Classic Car Kings (6x60'), for leading factual channel U&YESTERDAY and free streaming service, U. The six-part series ...
19/09/2024
Visit ToolsOnAir at NAB New York 2024 Javits Center, October 9-10, 2024
Visit ToolsOnAir at NAB New York 2024 Javits Center, October 9-10, 2024 The ToolsOnAir team is excited to meet you again in person at NAB New York 2024 at ...
19/09/2024
Writer-Director Jennifer Kent on the 10th Anniversary of The Babadook and Horror as an Independent Art Form
Writer-director Jennifer Kent's The Babadook is returning to the big scree...
19/09/2024
Blue Lucy to demo asset portal and host FAST roundtable at MIPCOM 2024
Blue Lucy is bringing its new media portal, BOLT to MIPCOM 2024, Cannes, October 21-24th. On stand P-1.C50A at the MIPCOM Innovation Lab 2024, the team will de...
19/09/2024
Bottle Yard Studios sale can proceed
The sale will ensure the studios continues to achieve its potential into the future, said the council By Matthew Corrigan Published: September 19, 2024 Th...
19/09/2024
Saankhya Labs, Sinclair To Collaborate on D2M ATSC 3.0 Devices
BENGALURU & DEHLI, India & BALTIMORE, Md. The long-awaited dream of Next-Gen TV reception on mobile phones took a big step forward today with the joint announce...
19/09/2024
DirecTV, Chicago Sports Network Reach Multi Year Distribution Agreement
CHICAGO & EL SEGUNDO, Calif. Chicago Sports Network (CHSN) and DirecTV announced a multiyear distribution agreement to provide the network and its live local ga...
19/09/2024
Spectrum Reach Becomes a Local Reseller for Amazon Ads
NEW YORK Spectrum Reach, the advertising sales business of Charter Communications, has announced a new multi-year agreement with Amazon Ads that will make Spect...
19/09/2024
SEC Taps Hawk-Eye Video Review Technology for Soccer, Volleyball
BIRMINGHAM, Ala. The Southeastern Conference is reporting that it will be using a multi-sport video review system supplied by Hawk-Eye Innovations, which is par...
19/09/2024
Rise Announces Award Shortlist for 2024
LONDON Rise, the gender diversity network for the media technology industry, has announced the shortlist for the Rise Awards, which will take place on Tuesday N...
19/09/2024
Study: Streaming Media Device Sales Set to Fall
A new study indicates that manufacturers of streaming media devices will have to look outside the U.S. growth in the next few years, as global streaming media d...
19/09/2024
Blackmagic Design Announces Blackmagic Camera for Android 1.3 Update!
Blackmagic Design Announces Blackmagic Camera for Android 1.3 Update! Brie Clayton September 18, 2024 0 Comments Blackmagic Design today announced Bla...
19/09/2024
Chyron Unveils Future of Graphics Playout Workflows With PRIME 5
Chyron Unveils Future of Graphics Playout Workflows With PRIME 5 Brie Clayton September 18, 2024 0 Comments PRIME Leverages gRPC API for Bidirectional...
19/09/2024
Jigsaw24 Media introduces new Adobe workflow ecosystem, supported by technology partnership with MoovIT
Jigsaw24 Media introduces new Adobe workflow ecosystem, supported by technology ...
19/09/2024
StackAdapt Integrates Data From Experian To Boost Match Rates
StackAdapt said it made a deal with Experian to integrate the data and analytics firm's identity graph and syndicated audiences into the StackAdapt platform...
19/09/2024
WWE's Saturday Night's Main Event' Returns to NBC, Live, December 14
Wrestling special Saturday Night's Main Event airs live on NBC and Peacock Saturday, December 14. The WWE special will be held at Nassau Veterans Memorial C...
19/09/2024
Oprah Investigates the Presleys in CBS Special
CBS airs An Oprah Special: The Presleys Elvis, Lisa Marie and Riley on Tuesday, October 8. The hourlong special sees Oprah Winfrey interview Riley Keough, gra...
19/09/2024
Mike Nelson, CBS Comms Veteran, Announces Departure
Mike Nelson, senior VP of communications for CBS News, Stations and Media Ventures, will step down at the end of the month. After a long run in CBS Stations, he...
19/09/2024
WNBC-WNJU Holds Star Choir Competition, Winner Moving on to Christmas in Rockefeller Center'
WNBC-WNJU New York, the NBC-Telemundo duopoly, is holding its Star Choir competi...
19/09/2024
Bob Schaper Named News Director at WGBA in Green Bay, Wisc.
WGBA, an NBC affiliate in Green Bay, Wisconsin, said it named Bob Schaper was news director, effective October 28....
19/09/2024
Hulu's Only Murders' Tops TVision's Power Score Rankings
Hulu's Only Murders in the Building (Season 4) returned to the top spot in TVision's Power Score ranking of the top shows streaming on connected TV for ...
19/09/2024
Roku's Self-Serve Ads Manager Lets Search, Social Advertisers Buy CTV
Roku said it launched Roku Ads Manager, a self-service platform designed to attract performance marketers who use social media and search and enable them to buy...
19/09/2024
El Cero Enters the Ring As Official Non-Alcoholic Cocktails for Anthem's Invicta FC
Invicta Fighting Championships, Anthem Sports & Entertainment all-female mixed m...
19/09/2024
Animated Alternative Broadcasts Go Local: Inside NBC Sports Chicago's Animated Chicago Blackhawks Telecast
Animated Alternative Broadcasts Go Local: Inside NBC Sports Chicago's Animat...
19/09/2024
CBS Sports Launches Beckham & Friends' Altcast for UEFA Champions League Coverage
CBS Sports Launches Beckham & Friends' Altcast for UEFA Champions League Co...
19/09/2024
SVG Sit-Down: Ross Video's Jim Doyle Details New Drones-as-a-Service' Offering
SVG Sit-Down: Ross Video's Jim Doyle Details New Drones-as-a-Service' O...
19/09/2024
SVG New Sponsor Spotlight: As HDR10+ Adoption Grows, Bill Mandel and Makoto Morise Detail How It Benefits Live Sports Content
SVG New Sponsor Spotlight: As HDR10 Adoption Grows, Bill Mandel and Makoto Mori...
19/09/2024
SVG Sit-Down: Pac-12 Enterprises' Michael Molinari Says State-of-the-Art Production Facility Is Open for Business'
SVG Sit-Down: Pac-12 Enterprises' Michael Molinari Says State-of-the-Art Pro...
19/09/2024
Joe Lycett to inaugurate International Day of Birmingham' on 24th September, uniting all Birminghams across the globe
Joe Lycett to inaugurate International Day of Birmingham' on 24th September...
19/09/2024
Winners revealed at the Sky Arts Awards
Winners revealed at the Sky Arts AwardsThursday 19 September 2024 Lindsey Mendick Mr Bates Vs The Post Office Aigul Akhmetshina Fern Brady Ryan Calais Came...
19/09/2024
Rohde & Schwarz and NOFFZ enable the next level of automotive radar production with a new efficient solution
Rohde & Schwarz and NOFFZ enable the next level of automotive radar production w...
19/09/2024
Rohde & Schwarz presents photonics-based ultra-stable tunable THz system for 6G at EuMW 2024
Rohde & Schwarz presents photonics-based ultra-stable tunable THz system for 6G ...
19/09/2024
What We Watched the First Half of 2024
Back to All News What We Watched the First Half of 2024 Entertainment 19 September 2024 Global Link copied to clipboard Today, we're sharing our lates...
19/09/2024
Finalists in Prolific North Marketing Awards
We are delighted to have been shortlisted in the Prolific North Marketing Awards 2024! ICG has been nominated in the category of Full Service Agency of the Yea...
19/09/2024
Bluepeak and Harmonic Join Forces to Future-Proof Broadband Connectivity
SAN JOSE, Calif. - Sept. 19, 2024 - Harmonic (NASDAQ: HLIT) today announced that U.S. service provider Bluepeak Fiber is taking a major step toward future-proof...
19/09/2024
RT Investigates: Inside the Protests Captures Moment Coolock Site Attacked
For the past six months, Barry O'Kelly of RT Investigates has been filming at protests against accommodation for migrants. The programme to be broadcast to...
19/09/2024
Saoirse Ronan, Snow Patrol and Rylan Clarke on this Friday night's Late Late Show
Here is your host, Patrick Kielty! WATCH OUR INSTA CLIP HERE. Fresh from the E...
19/09/2024
Climate Week Forecast: Outlook Improving With AI, Accelerated Computing
All the electricity that powers NVIDIA's global operations will come from renewable sources by the end of January. It's the right fuel for the company&...
19/09/2024
FINAL FANTASY XVI' Soars Into the Cloud With GeForce NOW
GeForce NOW makes gamers' fantasies a reality by bringing top titles to the cloud. This week, the award-winning FINAL FANTASY XVI is available for members t...
18/09/2024
Line up revealed for World's Most Dangerous Roads S6
Johnny Vegas & Lucy Beaumont and Babatunde Al sh & Kae Kurd arethecomedians taking part in brand new episodes of World's Most Dangerous Roads, which return...
18/09/2024
TV channel Gold's Absolutely Fabulous: Inside Out is joined by celebrities Emma Bunton, Meera Syal, Ruby Wax and more
The nation's favourite comedy channel, Gold, is set to take a reflective loo...
18/09/2024
Press Release: ToolsOnAir Wins 2024 OEM & Developer Award from Blackmagic Design at IBC
Press Release: ToolsOnAir Wins 2024 OEM & Developer Award from Blackmagic Design...
18/09/2024
A Different Man Is a Triumph That Lingers Long After Credits Role
Warning: This feature contains spoilers about the film. By Bailey Pennick Aaron Schimberg kept it brief in his introduction before A Different Man had its wor...
18/09/2024
Mi Primer Escenario' ofrece a los artistas emergentes en Mxico la oportunidad de tomar el escenario en MEXCLA Spotify
Apoyar a los artistas emergentes es parte fundamental del ADN de Spotify. Ahora ...
18/09/2024
Mi Primer Escenario' Offers Emerging Mexican Artists a Chance To Perform at MEXCLA Spotify'
Supporting emerging artists is a fundamental part of Spotify's DNA, and we...
18/09/2024
Karmic lessons and laughs with new SBS podcast Comedy Karma'
Karmic lessons and laughs with new SBS podcast Comedy Karma' 18 September, 2024 Media releases Join the ever-curious stand-up comedian Aditya Gautam a...
18/09/2024
Clear-Com Supports the Next Generation of Media Professionals at Rise Academy Summer...
eds3_5_jq(document).ready(function($) { $(#eds_sliderM519).chameleonSlider_2_1({...