APIs Are the New Battleground in CybersecurityImperva CEO Pam Murphy Shares Insights on API Risks and Exposures
The adoption of APIs in terms of daily transactions in the post-COVID-19 digital world has skyrocketed, but that proliferation of APIs has created exposures and risks that need to be addressed proactively before an organization faces a devastating data breach, warned Pam Murphy, CEO at Imperva.
Eighty percent of the volume of internet traffic today is enabled by APIs. With that comes bad actors looking to see how they can abuse that system, Murphy said. The huge potential for API abuse has made it necessary for cybersecurity vendors to develop security solutions that accompany API deployments.
"Right now, there's about $75 billion lost every year as a result of API insecurity, and that number is going to continue to grow. APIs are used to interact directly with a database or a data store," Murphy said. "What they're pulling is effectively really secure, confidential data. Business logic and data is very sensitive. It's not as if it's an API that's doing something innocuous. It's incredibly dangerous and risky."
In this video interview with Information Security Media Group at RSA Conference 2023, Murphy also discusses:
- How CISOs are clamping down on the criminal tendencies of bad actors;
- Why security shouldn't be an afterthought;
- The rise in bot attacks.
Murphy has extensive operational experience in running global organizations, having held a variety of roles in North America, Europe and the APAC region. She is a board member of Visa, Rockwell Automation and MeridianLink.