Application programming interfaces (APIs) are at the core of nearly every digital experience. But recent news stories about security vulnerabilities that expose private data have brought the issue of API management into sharp focus. Gartner has recently predicted that APIs will become the top attack vector by 2022. With consumers increasingly reliant on IoT connected devices and entertainment and lifestyle subscription services, API security problems open the door to denial-of-service attacks or the mass exposure of the personal information of users. Organizations should have both an API strategy and a well-managed API management platform in place so that before teams expose APIs to anybody, a thorough security review is undertaken before rolling out certain API designs.
Source: https://www.helpnetsecurity.com/2021/07/26/ignore-api-security/