API traffic, both north-south and east-west, is analyzed using behavioral analytics and machine learning. These systems establish usage baselines and flag anomalies that might indicate a breach.

Sniffed API calls: API traffic may be sniffed through a man-in-the-middle approach, uncovering API keys or unsecured APIs. Access control: Who is accessing your APIs and what access do they have?

Cybersecurity veteran Tippu Gagguturu,CEO of SecurEnds, has launched APIDynamics, a next-generation API security company purpose-built for machine-first, cloud-native ecosystems.

FireTail published The State of APIs and API Security in 2023, a comprehensive analysis of significant API breaches and incidents in the last decade.