Global State of API Security Survey 2015 conducted 1,200 CIOs, CSOs and security specialists. 70% of IT professionals have no processes in place to ensure data accessed by applications consuming their APIs is managed securely. Two-thirds of API owners do not consider the security of their data an issue once it leaves their domain via the API. Nearly 46% of survey respondents did not rate limit access to their APIs, a control that can reduce the risk of hacking. Larger organizations (1,000+) and shops with 50+ APIs were more likely to use rate limiting.”]

