TL;DR:
- Google Cloud has introduced Advanced API Security with a machine learning-powered API abuse detection dashboard.
- The dashboard helps customers detect API security misconfigurations, malicious activities, and bad bots.
- The models have been trained to detect complex business logic attacks.
- The dashboard alerts security teams to only the most critical events.
- The abuse detection feature can be accessed through the Apigee UI, Security Incidents API, or Security Stats API.
- The introduction of the API abuse detection dashboard is in response to the increasing number of cyberattacks and associated costs.
- Other companies, such as Cloudflare and Microsoft, are also taking API security seriously with similar features.
Main AI News:
Google Cloud has taken a step forward in the fight against cyberattacks by introducing its Advanced API Security, featuring a machine learning-powered API abuse detection dashboard. This new feature is part of Google’s Apigee API management and is aimed at helping customers quickly detect API security misconfigurations, malicious activities, and bad bots.
The models behind the dashboard have been trained by Google’s internal teams to detect even the most complex business logic attacks, which are often harder to detect with conventional security policies. The dashboard helps security teams filter through alerts, saving time and resources by only alerting them to the most critical events. The alerts are presented with “human-friendly” titles, providing a quick overview of the source of the attack, the APIs affected, and the duration of the attack.
In addition to the UI, security teams can access the abuse detection feature through the Apigee Security Incidents API or the Security Stats API. This allows them to drill down into the attack and cross-reference with other similar incidents, along with recommendations on how to remediate the event as quickly as possible.
The introduction of the API abuse detection dashboard is in response to the growing number of cyberattacks and the associated costs. According to IBM’s 2022 Cost of a Data Breach Report, the average cost of a data breach is $4.35 million. Sarah Klein, a regulatory, privacy, and cybersecurity professional, stated that as companies rely more on APIs, security experts must proactively change the narrative and treat API abuse as a data breach.
Google is not the only company taking API security seriously. Other companies, such as Cloudflare, have introduced API abuse detection capabilities, while Microsoft offers complete lifecycle protection, detection, and response coverage for APIs through Defender for APIs.
Conlcusion:
The introduction of Advanced API Security by Google Cloud, featuring a machine learning-powered API abuse detection dashboard, is a significant development for the market. With the increasing number of cyberattacks and associated costs, businesses are in need of sophisticated solutions to protect their APIs and secure their data. The ability to quickly detect security misconfigurations, malicious activities, and bad bots, combined with the training of the models to detect even the most complex business logic attacks, makes Advanced API Security a valuable addition to the market.
This trend is being echoed by other companies, such as Cloudflare and Microsoft, which are also introducing similar security features. Overall, the market is moving in the direction of increased focus on API security, and businesses are wise to take notice and follow suit.