%term

Do We Have Full API Visibility Across Our Entire API Ecosystem?

Jan 15, 2026 By Jinson Varghese In Astra

Over 68% of companies have suffered API security breaches at a cost exceeding $1M. The question is not whether your APIs are vulnerable, but whether you can detect the threats in time. With API traffic comprising 71% of all web activity, the digital backbone of the modern enterprise is both our greatest strength and most exploited threat surface. Are we seeing every single API? These statistics reveal a concerning reality for most organizations.

Read Post

Astra

Read more about Do We Have Full API Visibility Across Our Entire API Ecosystem?

Understanding the API Security Maturity Model

Jan 14, 2026 By Rishabh Goyal In Astra

As per Traceable’s 2025 State of API Security report, only 21% of the >1500 respondents surveyed across the globe showed confidence in detecting attacks at the API layer. Furthermore, only 13% were capable of preventing >50% of API attacks. This is when the API sprawl is still burgeoning. The challenge, thus, is no longer volume but maturity.

Read Post

Astra

Read more about Understanding the API Security Maturity Model

Beyond Testing: API Security as the Foundational Intelligence for an 'industry leader'-Level Security Strategy

Jan 14, 2026 By Eric Schwake In Salt Security

In today's security landscape, it's easy to get lost in a sea of acronyms. But one layer has become the undisputed foundation for modern application security: API security. Why? Because APIs are no longer just part of the application, they are the application. They are the connective tissue for microservices, third-party data, and the explosive new 'Agentic AI Action Layer' powered by protocols like MCP (Model Context Protocol). Securing the application is securing the APIs.

Read Post

Salt Security

Read more about Beyond Testing: API Security as the Foundational Intelligence for an 'industry leader'-Level Security Strategy

What We Got Right (and Wrong) about 2025

Jan 14, 2026 By Wallarm In Wallarm

Watch now for a clear and candid look back at the predictions made for 2025 by Wallarm and by other voices across the industry. During the session, we revisit what people expected to happen in cybersecurity, API security, and the broader technology space, and compare those expectations with what actually unfolded throughout the year.

View Video

Wallarm

API
Security

Read more about What We Got Right (and Wrong) about 2025

How Agentic AI Creates Shadow APIs: Security Risks Explained

Jan 14, 2026 By A10 Networks In A10 Networks

How Agentic AI Creates Shadow APIs: Security Risks Explained As businesses move from static applications to Agentic AI, the security landscape is shifting beneath our feet. In this clip from the A10 Networks webinar, "APIs are the Language of AI: Protecting Them is Critical," experts Jamison Utter and Carlo Alpuerto discuss a new frontier in cybersecurity: AI that builds its own APIs.

View Video

A10 Networks

Read more about How Agentic AI Creates Shadow APIs: Security Risks Explained

57% of Companies ALREADY BREACHED Through APIs (Your Company Is Probably Next) #apisecurity #api

Jan 13, 2026 By Wallarm In Wallarm

82% of companies are going API-First in 2025 But here's the troubling fact: 57% of them have ALREADY been breached through APIs. Why? Because they're going API-first without a solid API security strategy. It's like buying a sports car and forgetting the insurance. Organizations are racing toward digital transformation while threat actors simply walk through the open door. Threat actors love when you're API-first without a good security program. It makes their job easier.

View Video

Wallarm

API
Security

Read more about 57% of Companies ALREADY BREACHED Through APIs (Your Company Is Probably Next) #apisecurity #api

7 Reasons to Get Certified in API Security

Jan 12, 2026 By Wallarm In Wallarm

API security is becoming more important by the day and skilled practitioners are in high demand. Now’s the time to level up your API security skillset. Wallarm University, our free training course, provides security analysts, engineers, and practitioners with hands-on skills you can’t get from documentation, videos, or traditional courses. Run real attacks, investigate real signals, and learn exactly how to defend API environments when it counts. Here are the 7 reasons you should register.

Read Post

Wallarm

Read more about 7 Reasons to Get Certified in API Security

7 Essential Best Practices to Strengthen Your API Security Posture

Jan 12, 2026 By Jinson Varghese In Astra

99% of organizations faced API security issues in the past 12 months. Yet only 10% have an API posture governance strategy in place to actually defend against them. What makes this worse is that 95% of API attacks now come from authenticated sources. Traditional defenses built around authentication are failing. Shadow APIs and zombie APIs operate undetected while businesses manage an average of 660 endpoints with little visibility.

Read Post

Astra

Read more about 7 Essential Best Practices to Strengthen Your API Security Posture

The MCP Security Blueprint: What a Hardened MCP Server Looks Like

Jan 12, 2026 By Eric Schwake In Salt Security

Over the last year, Model Context Protocol (MCP) servers have transitioned from "cool developer experiments" into critical production infrastructure. Developers love them because they allow AI agents to open tickets, query databases, and update records with almost zero integration backlog. But there is a fundamental truth we must acknowledge before moving forward: The AI revolution is actually an API revolution.

Read Post