An application programming interface, or API, is a piece of software that enables two applications to talk to each other. It essentially serves as a bridge that allows data to flow back and forth between the two systems. A faulty API can expose more data than it should to users who are authorized to access some, but not all, the information housed on the application serviced by the API. It also can become a weak spot that hackers exploit to steal data or attack IT infrastructure. The problem isnt with APIs as a technology, but its the fault of poor human design.”]