AI Surge Drives Record 1205% Increase in API Vulnerabilities

by admin 0 Comments

Security
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

AI-driven API vulnerabilities have skyrocketed by 1205% in the past year.

The figures come from the 2025 API ThreatStats Report by Wallarm, which highlights how AI has become the biggest driver of API security threats, with nearly 99% of AI-related vulnerabilities tied to API flaws.

The study also found that 57% of AI-powered APIs were accessible externally, while 89% lacked secure authentication. Only 11% implemented robust security measures.

Wallarm tracked 439 AI-related CVEs in 2024. Many of these stemmed from injection flaws, misconfigurations and a newly identified category – Memory Corruption and Overflow – caused by AI’s reliance on high-performance binary APIs.

APIs Dominate Cybersecurity Threat Landscape

For the first time, over 50% of all recorded CISA exploited vulnerabilities were API-related, a sharp rise from 20% in 2023. Of these, 33.5% targeted modern RESTful and GraphQL APIs, while 18.9% affected legacy systems, such as AJAX-based APIs and URL parameter vulnerabilities.

Read more on API security: New APIs Discovered by Attackers in Just 29 Seconds

Real-world incidents underscore the risks. The Dell API breach exposed 49 million records in May 2024, while Twilio’s Authy exploit compromised 33.4 million phone numbers. In healthcare, Ascension Health faced a devastating API breach affecting 5.6 million patients in December.

Key Takeaways

Among the key takeaways from the report, Wallarm found that:

  • AI deployment is driving API vulnerabilities – 53% of enterprises reported engaging in multiple AI projects
  • Authentication flaws remain a critical issue – 89% of AI-powered APIs use insecure authentication
  • Legacy and modern APIs are equally at risk – Over 33% of CISA KEV vulnerabilities involve modern API technologies
  • Memory corruption vulnerabilities emerge – AI’s high-performance computing reliance leads to new security challenges
  • API breaches tripled in 2024 – Incidents rose from a few per quarter to multiple per month

With APIs becoming the backbone of AI integration, Wallarm urges organizations to implement real-time security controls to mitigate risks. As API-related threats continue to rise, enterprises must prioritize API security to protect their operations, data and reputation.

This article was originally published by Infosecurity-magazine.com. Read the original article here.
Share on Facebook
Share on Twitter
Share on Pinterest
Share on LinkedIn

Products You May Like

Articles You May Like

Hidden Text Salting Disrupts Brand Name Detection Systems
Meta’s Llama Framework Flaw Exposes AI Systems to Remote Code Execution Risks
ENGlobal Cyber-Attack Exposes Sensitive Data
Russian Scammers Target Crypto Influencers with Infostealers
RANsacked: Over 100 Security Flaws Found in LTE and 5G Network Implementations

Leave a Reply

Your email address will not be published. Required fields are marked *