Radware has been named in the ‘Where Are They Now?’ section in the Gartner’s May 2020 Cool Vendors in API Strategy1 report. Radware was previously recognized as ShieldSquare prior to acquisition by Radware in 2019. The report states that, “explosive demand for APIs and innovative use cases require application leaders to have an effective API strategy in place.”
APIs are Experiencing Growing Numbers of Attacks
Our researchers found that APIs are increasingly being attacked to carry out account takeovers and theft of personally identifiable information (PII), payment card details, and confidential business data. Trend-wise, our aggregated traffic data analysis from our ‘Big Bad Bot Problem 2020’2 report found that bot traffic on APIs in 2019 constituted 16.6% of all API traffic, a significant increase from the 14.3% we recorded in 2018.
Even more alarming is that every single day, 19% of respondents in our 2019 State of Web Application Security Survey3 experienced access violation and denial of service attacks on their APIs. Gartner analysts had predicted that, “by 2021, 90% of web-enabled applications will have more surface area for attack in the form of exposed APIs rather than the UI [user interface], up from 40% in 2019”.4 Naturally, these worrying figures should greatly concern security leaders responsible for the security and integrity of their APIs as well as their Web and mobile portals.
The Cool Vendors in API Strategy report advises that “Security teams and application leaders responsible for APIs have a requirement to ensure that the applications consuming their APIs are, indeed, the applications that they intend to consume their APIs. Reverse engineering of client applications continues to be an issue for API providers, because it enables attackers to detect API keys and mimic legitimate clients.”
The 2020 edition of Gartner’s Cool Vendors in API Strategy report is available to Gartner subscribers here.
1Gartner, “Cool Vendors in API Strategy”, Shameen Pillai, Paolo Malinverno, Mark O’Neill, Jeremy D’Hoinne, 18 May 2020′.
2Radware Bot Manager: ‘The Big Bad Bot Problem 2020’
3Radware Report: 2019 State of Web Application Security Survey
4Gartner, “API Security: What You Need To Do To Protect Your APIs,” Mark O’Neill, Dionisio Zumerle, Jeremy D’Hoinne, August 28, 2019.
Gartner Disclaimer: Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s Research & Advisory organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.