As API traffic continues to surge, businesses are witnessing a threefold increase in attacks, making it the new battleground for CISOs.

It is critical to understand the API attack techniques that hackers use to achieve their targets, experts agree.

If the tactical goal is credential access, the attackers may use brute force attacks or man-in-the-middle attacks as their techniques. As organizations are modernizing their applications and infrastructure as part of their cloud strategy, the use of third-party software and APIs helps integrate with older applications and data stores. Protecting your APIs against vulnerabilities and malicious actors looking to gain access to your valuable data is crucial. There is a need to repurpose part of the budget from other layers of the technology stack to API security.

The session will cover:

• Managing the API attack surface
• Understanding and quantifying top API risks
• Who owns API security in the organization, and what to look for in an API security solution