API Security , Events , RSA Conference

APIs Are the New Battleground in Cybersecurity

Imperva CEO Pam Murphy Shares Insights on API Risks and Exposures
Pam Murphy, CEO, Imperva

The adoption of APIs in terms of daily transactions in the post-COVID-19 digital world has skyrocketed, but that proliferation of APIs has created exposures and risks that need to be addressed proactively before an organization faces a devastating data breach, warned Pam Murphy, CEO at Imperva.

See Also: The Operationalization of Threat Intelligence Programs

Eighty percent of the volume of internet traffic today is enabled by APIs. With that comes bad actors looking to see how they can abuse that system, Murphy said. The huge potential for API abuse has made it necessary for cybersecurity vendors to develop security solutions that accompany API deployments.

"Right now, there's about $75 billion lost every year as a result of API insecurity, and that number is going to continue to grow. APIs are used to interact directly with a database or a data store," Murphy said. "What they're pulling is effectively really secure, confidential data. Business logic and data is very sensitive. It's not as if it's an API that's doing something innocuous. It's incredibly dangerous and risky."

In this video interview with Information Security Media Group at RSA Conference 2023, Murphy also discusses:

  • How CISOs are clamping down on the criminal tendencies of bad actors;
  • Why security shouldn't be an afterthought;
  • The rise in bot attacks.

Murphy has extensive operational experience in running global organizations, having held a variety of roles in North America, Europe and the APAC region. She is a board member of Visa, Rockwell Automation and MeridianLink.


About the Author

Mathew J. Schwartz

Mathew J. Schwartz

Executive Editor, DataBreachToday & Europe, ISMG

Schwartz is an award-winning journalist with two decades of experience in magazines, newspapers and electronic media. He has covered the information security and privacy sector throughout his career. Before joining Information Security Media Group in 2014, where he now serves as the executive editor, DataBreachToday and for European news coverage, Schwartz was the information security beat reporter for InformationWeek and a frequent contributor to DarkReading, among other publications. He lives in Scotland.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.