Business Wire

Traceable Releases 2025 State of API Security Report: API Breaches Persist as Fraud, Bot Attacks, and Generative AI Increase Risks

30.10.2024 14:25:00 EET | Business Wire | Press release

Share

Traceable AI, the industry's leading API security company, today released its second annual research report—the 2025 Global State of API Security. The findings demonstrate that organizations are failing to protect their APIs despite persistent breaches and increased awareness of security risks. This comprehensive study, incorporating insights from over 1,500 IT and cybersecurity experts across the US, UK, and EMEA, reveals fundamental weaknesses in API security strategies and tracks how these issues have shifted since our inaugural report.

Key findings examine the most pressing API security issues organizations face today: increasing bot attacks and fraud, risks from third-party APIs, and the new security implications of generative AI applications.

Download the full report for in-depth analysis.

Key Findings Include:

  1. API-Related Data Breaches Continue to Wreak Havoc: 57% of organizations suffered an API-related data breach in the past two years, with a staggering 73% of these experiencing three or more incidents. Even more concerning, 41% endured five or more breaches, revealing a systemic failure in API defenses and a clear need for investment in purpose-built API security solutions.
  2. Traditional Security Solutions Fail to Deliver API Protection: Despite deploying an array of security tools—from legacy WAFs to CDNs and Gateways—only 19% of organizations rate their defenses as highly effective. Moreover, 53% admit that traditional solutions like WAFs and WAAPs are ineffective at identifying or preventing fraud at the API layer.
  3. Generative AI Applications Create New Risks: 65% of organizations state that generative AI applications pose a serious to extreme risk to APIs. 60% state that the additional API integrations required for generative AI applications expand their organization’s attack surface; the same percentage cite concerns about sensitive data exposure and unauthorized access.
  4. Bot Attacks and Fraud are Rampant: 53% of organizations have experienced one or more bot attacks involving their APIs, and 44% say that bot mitigation is a top challenge. Fraud is equally concerning, emerging as the second most prevalent cause of API-related data breaches among survey respondents.
  5. Third-Party APIs Are a Hidden Danger: Organizations now use an average of 131 third-party APIs, up slightly from last year's 127. Yet, only 16% have a “high ability” to mitigate these external risks, leaving a vast attack surface greatly exposed.

"API breaches are rampant, and the industry is in denial,” said Richard Bird, Chief Security Officer of Traceable. “Organizations keep deploying the same solutions—Web Application Firewalls, API gateways, and lifecycle tools—yet only a small percentage report any real success. This cognitive dissonance is a ticking time bomb. The truth is, these traditional defenses are failing, and the more companies rely on them, the more they expose themselves to devastating attacks. We’re also seeing a surge in bot attacks, increasing instances of API fraud, and new vulnerabilities emerging from the rapid adoption of generative AI applications. Companies must confront the uncomfortable truth: their current strategies are inadequate. Without a fundamental shift in how they secure APIs, breaches and their consequences will continue to escalate.”

Traceable conducts this annual research to provide organizations with an objective assessment of API security risks and trends. By tracking these patterns and emerging threats, we aim to offer security leaders the knowledge needed to make informed decisions and prioritize the most important security challenges. Our commitment is to ensure that as APIs continue to be central to business operations, organizations have the insights they need to protect their critical assets.

Download the full 2025 State of API Security report today.

About Traceable

Traceable’s intelligent and context-aware solution powers complete API security, API discovery and posture management, API security testing, attack detection and threat hunting, and attack protection anywhere your APIs live. Traceable enables organizations to minimize risk and maximize the value that APIs bring their customers. To learn more about how API security can help your business, book a demo with a security expert.

View source version on businesswire.com: https://www.businesswire.com/news/home/20241030645718/en/

Contacts

Ryan Romana
Touchdown PR
traceable@touchdownpr.com

About Business Wire

For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.

www.businesswire.com

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

IFF Declares Dividend for Third Quarter 202530.7.2025 23:20:00 EEST | Press release

IFF (NYSE: IFF) announced that its Board of Directors has declared a regular quarterly cash dividend of $0.40 per share of its common stock, payable on October 10, 2025 to shareholders of record as of September 29, 2025. Welcome to IFF At IFF (NYSE: IFF), we make joy through science, creativity and heart. As the global leader in flavors, fragrances, food ingredients, health and biosciences, we deliver groundbreaking, sustainable innovations that elevate everyday products—advancing wellness, delighting the senses and enhancing the human experience.Learn more at iff.com, LinkedIn, Instagram and Facebook. © 2025 by International Flavors & Fragrances Inc. IFF is a Registered Trademark. All Rights Reserved. View source version on businesswire.com: https://www.businesswire.com/news/home/20250730368333/en/

IFF Appoints Paul J. Fribourg and Jesus B. Mantas to Board of Directors30.7.2025 23:15:00 EEST | Press release

IFF (NYSE: IFF)—a global leader in flavors, fragrances, food ingredients, health and biosciences—today announced the appointment of Paul J. Fribourg and Jesus B. Mantas to its board of directors, effective immediately. These appointments bring extensive international leadership experience, and industry and strategic insight to IFF as the company continues to advance its innovation agenda and strengthen its market position. “I am delighted that Paul and Jesus are joining the IFF board,” said Kevin O’Byrne, chair of the IFF board. “They bring a strong combination of digital innovation, global market insight and operational excellence. Their experience, leadership and vision will help guide IFF through its next phase of growth as we continue to deliver breakthrough solutions for customers and create long-term value for our stakeholders.” Paul J. Fribourg Fribourg brings more than four decades of global leadership experience in agribusiness, food and investment sectors, and currently serve

Estithmar Holding Reports Record Half-Year Results for 202530.7.2025 20:46:00 EEST | Press release

Revealing an exceptional performance across all key financial metrics, Estithmar Holding Q.P.S.C. announced its financial results for the six-month period ended 30 June 2025, following board approval. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20250730991496/en/ Estithmar Holding Reports Record Half-Year Results for 2025 (Graphic: AETOSWire) The company reported revenue of QAR 3.073 billion, an 87% year-on-year increase. Gross profit soared by 134% to QAR 1.054 billion, while EBITDA rose 97% to QAR 732 million compared to H1 2024. Net profit reached QAR 465 million, up 97% year-on-year, while earnings per share (EPS) doubled, reaching QAR 0.130. While Estithmar Holding continues its upward trajectory in its financial and operational indicators across all its financial disclosures, this remarkable leap in results for H1 2025 is mainly attributed to increased revenue through its international expansions across its 4 sectors

Andersen Consulting Expands AI-Enablement Capabilities with Addition of NextGen Invent30.7.2025 16:30:00 EEST | Press release

Andersen Consulting enters into a Collaboration Agreement with NextGen Invent, an AI enablement and technology services company focused on delivering innovative, data-centric solutions, strengthening the organization’s digital transformation platform by integrating advanced data science, AI, and intelligent automation capabilities. Headquartered in the U.S., NextGen Invent brings deep expertise in generative AI, machine learning, data strategy, advanced analytics, digital product development, IoT, and intelligent automation. Their solutions are behind some of the most recognizable brands in the healthcare, financial services, life sciences, and manufacturing industries. With a strong emphasis on innovation, NextGen Invent helps organizations across these industries to accelerate digital maturity, optimize operations, and uncover new opportunities for growth. The company is known for its technology thought leadership and ability to drive business outcomes through intelligent insights. “

Armis Honored with Inaugural Wiz Integrations (WIN) Partner Award30.7.2025 16:00:00 EEST | Press release

Armis, the cyber exposure management & security company, has been recognized by Wiz as a winner in the inaugural WIN awards, earning the WINspiration Award for its outstanding partnership. This recognition highlights Armis' track record of delivering real outcomes for joint customers through the WIN program. Armis, recognized for its commitment to customer success and innovation, brings the power of Armis Centrix™, the Armis Cyber Exposure Management Platform, to WIN, enabling customers to seamlessly integrate Wiz into their existing workflows. This partnership empowers Wiz and Armis to share prioritized security findings with context, including inventory, vulnerabilities, issues and configuration findings. Mutual customers can operationalize the remediation lifecycle by: Gaining deep situational awareness of every asset and its details across the digital landscape Consolidating, contextualizing and prioritizing Wiz findings in Armis based on asset profile and business risk weighting A

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye