Recent reports suggest that by 2022, API abuses will be the vector most responsible for data breaches within enterprise web applications. This is primarily due to the extensive growth of API implementations worldwide, providing a new target that hasn’t been widely exploited yet. With this, protecting APIs is becoming more important. API security issues can be categorized into three areas of concern: Exposing sensitive data, denial-service attacks against back-end servers and API-based apps. The OWASP Project aims to help organizations, developers and application teams become more aware of the risks of APIs.”]
Source: https://www.darkreading.com/application-security/why-you-need-to-think-about-api-security