Application Programming Interfaces (APIs) are crucial for seamless communication between various applications and systems. The growing use of APIs across all facets of business also brings with it a significant increase in the attack surface. An API attack is the malicious usage or attempted usage of an API from automated threats such as access violations, bot attacks or abuse. An API attack can result in mass data losses, stolen private information and service disruption.
Examples of API attacks include:
- DoS/DDoS (Distributed Denial of Service) Attacks
- インジェクション攻撃
- Authentication Hijacking
- Cross-sie scripting (XSS)
- Parameter Tampering
- Man in the Middle (MitM)
- Credential stuffing
- Application Abuse
- サーバサイド リクエスト フォージェリ(SSRF)