What API and web attack statistics on banking did Akamai (AKAM) share for 2025?

Akamai reported that in 2025, 60% of total web attacks and 83% of incursions against API endpoints targeted banking. According to Akamai, 96% of surveyed financial service leaders experienced at least one API security incident over 12 months, the highest among all industries.

Financial Services at Risk: DDoS Attacks Are Bigger, Longer, and More Complex, Akamai Research Finds

Rhea-AI Impact

(Neutral)

Rhea-AI Sentiment

(Neutral)

Rhea-AI Summary

Akamai (NASDAQ: AKAM) released its May 20, 2026 State of the Internet Security report focused on financial services. The research finds cybercriminals and pro-Iran hacktivists increasingly using AI-driven DDoS and bots against banking, payments, APIs, and applications, with median DDoS duration up 738% since 2024.

Key data points include high rates of API incidents, banking-focused web and API attacks, widespread ransomware exposure, a 147% surge in advanced bot activity, and distinct regional attack patterns.

AI-generated analysis. Not financial advice.

News Market Reaction – AKAM

+1.26%

1 alert

+1.26% News Effect

On the day this news was published, AKAM gained 1.26%, reflecting a mild positive market reaction.

Data tracked by StockTitan Argus on the day of publication.

Key Figures

DDoS duration increase: 738% API incidents prevalence: 96% Web attacks at banking: 60% +5 more

8 metrics

DDoS duration increase 738% Median duration increase for Layers 3 and 4 DDoS attacks since 2024

API incidents prevalence 96% Financial service leaders reporting at least one API incident in past 12 months

Web attacks at banking 60% Share of total web attacks in 2025 targeting banking

API incursions at banking 83% Share of API endpoint incursions in 2025 targeting banking

Ransomware exposure Nearly 80% Financial institutions facing ransomware attacks in past two years

Advanced bot surge 147% Increase in advanced bot activity in late 2025

Malicious scraping share 96% Share of site traffic from malicious scraping bots in one case study

EMEA DDoS share 62% EMEA share of Layers 3 and 4 DDoS attacks on financial services

Market Reality Check

Price: $149.59 Vol: Volume 13800297 is 2.14x ...

high vol

$149.59 Last Close

Volume Volume 13800297 is 2.14x the 20-day average of 6449163, indicating elevated trading activity before this report. high

Technical Shares at 141.34 are trading above the 200-day MA of 92 and about 14.57% below the 52-week high of 165.45.

Peers on Argus

AKAM fell 6.25% while most close software/security peers were down more modestly...

AKAM fell 6.25% while most close software/security peers were down more modestly (e.g., SAIL -2.3%, OKTA -3.43%, RBRK -2.44%) and FFIV rose 1.45%, pointing to a stock-specific move rather than a broad sector shift.

Historical Context

5 past events · Latest: May 19 (Positive)

Pattern 5 events

Date	Event	Sentiment	Move	Catalyst
May 19	AI product launch	Positive	-6.3%	Introduced AI Brand Presence to optimize content for AI search and agents.
May 18	Convertible note offering	Negative	-6.3%	Announced $1.3B 2030 and $1.3B 2032 0% convertible senior notes.
May 14	AI security acquisition	Negative	-3.4%	Planned $205M LayerX acquisition, dilutive to 2026 non-GAAP EPS by $0.12.
May 07	Q1 2026 earnings	Positive	+26.6%	Reported $1.074B revenue, strong security growth and large CIS commitment.
May 05	API security launch	Positive	+11.5%	Launched Security Posture Center and code-to-runtime mapping for APIs.

Pattern Detected

Price reactions typically align with the tone of news, with only one recent divergence where seemingly positive AI product news coincided with a notable decline.

Recent Company History

Over recent months, Akamai has combined product innovation with larger strategic and financing moves. On May 5 and May 7, 2026, new API security offerings and strong Q1 results drove gains of 11.5% and 26.58%. An announced LayerX acquisition and a sizable convertible notes offering in mid-May were followed by declines of 3.39% and 6.25%. The latest AI Brand Presence launch on May 19 saw another 6.25% drop, showing mixed market reception to growth and AI-focused initiatives.

Market Pulse Summary

This announcement highlights Akamai’s research on escalating DDoS and API attacks against financial ...

Analysis

This announcement highlights Akamai’s research on escalating DDoS and API attacks against financial services, with median attack durations up 738% and 96% of surveyed leaders reporting API incidents. These trends frame the strategic relevance of Akamai’s recent security product launches and its focus on protecting critical banking and payment infrastructure. Investors may watch how such threat intelligence translates into demand for security offerings, alongside the impact of recent financing and acquisition decisions on growth and earnings metrics.

Key Terms

ddos, api, layer 4, layer 7, +3 more

7 terms

ddos technical

"distributed denial-of-service (DDoS) attacks, Akamai (NASDAQ: AKAM) reveals"

A DDoS (distributed denial-of-service) attack is when many compromised computers or devices artificially flood a company's online systems with traffic so legitimate users cannot access websites, apps, or services. For investors, DDoS episodes can disrupt sales, damage customer trust, and expose weaknesses in a company's security — like a traffic jam that shuts down a city's main highway, revealing costs and operational risks that can affect revenue and stock value.

api technical

"web and API (Layers 3 and 4) distributed denial-of-service (DDoS) attacks"

An API, or Application Programming Interface, is a set of rules that allows different software programs to communicate and work together smoothly, much like a waiter translating your order into the kitchen and then bringing your meal back. For investors, APIs are important because they enable real-time access to financial data, trading systems, and other digital services, making it easier to make informed decisions quickly and efficiently.

layer 4 technical

"web and API (Layers 3 and 4) distributed denial-of-service (DDoS) attacks"

Layer 4 is the part of a computer network that controls how data is delivered between one device and another, managing the rules for starting, keeping, and ending connections so messages arrive whole and in order. Think of it like highway lanes and traffic lights that regulate vehicle flow to prevent jams and collisions. For investors, Layer 4 matters because its performance and reliability directly affect the speed, uptime, and security of online services, which can influence customer satisfaction, operating costs, and regulatory risk.

layer 7 technical

"APAC is the most targeted by Layer 7 DDoS (52%)"

Layer 7 is the top level of network communication that handles the actual applications people use, like web browsers, mobile apps, and online services — think of it as the front desk where requests from users are processed. For investors, Layer 7 matters because problems or improvements here directly affect user experience, security (such as blocking malicious traffic), and the functionality of online products, which can influence customer retention, costs, and revenue.

ransomware technical

"Nearly 80% of financial institutions have faced ransomware attacks"

Ransomware is malicious software that locks or encrypts a company’s computer files and systems, then demands payment for their release — like a thief changing the locks on a business and asking for a ransom. It matters to investors because attacks can halt operations, trigger large cleanup costs, damage customer trust, lead to regulatory fines or legal claims, and reduce future revenue, all of which can hurt a company’s financial value.

botnets technical

"AI-Empowered Botnets and API Visibility Gaps: Attack Trends in Financial Services"

A botnet is a network of internet-connected devices that have been secretly taken over by criminals and are controlled remotely to carry out coordinated attacks or fraud. Think of it like a fleet of hijacked cars driven by a remote operator to block highways or steal goods; for investors, botnets can cause costly outages, data breaches, lost sales, regulatory fines and reputational damage that can quickly reduce a company’s revenue and share price.

dns technical

"and practical DNS and DDoS attack mitigation strategies"

DNS is the internet’s lookup system that translates human-friendly website names into the numeric addresses computers use, like a phonebook that finds a business by name and returns its street address. Investors care because problems with DNS — outages, hijacks or misconfigurations — can make a company’s website, online sales, customer logins and email inaccessible, potentially harming revenue, reputation and short-term market value.

AI-generated analysis. Not financial advice.

See more from StockTitan in Google Search and AI answers. Adds StockTitan as a preferred source · opens Google

Add on Google

05/20/2026 - 06:28 AM

Pro-Iran hacktivism and AI bots are amplifying cyberattacks targeting online banking, payments, and applications

CAMBRIDGE, Mass., May 20, 2026 (GLOBE NEWSWIRE) -- Cybercriminals are now targeting financial services more than any other industry for web and API (Layers 3 and 4) distributed denial-of-service (DDoS) attacks, Akamai (NASDAQ: AKAM) reveals in its AI-Empowered Botnets and API Visibility Gaps: Attack Trends in Financial Services State of the Internet (SOTI) Security report. The findings highlight a dangerous shift as pro-Iran hacktivists and AI-driven bots weaponize DDoS tactics to disrupt online banking, payment systems, and critical applications.

Driven by AI-powered infrastructure, the median duration of global Layers 3 and 4 DDoS attacks targeting the financial services sector is up 738% since 2024. This shows that while digital transformation has enabled advances such as online banking and real-time payments, it has also widened the doors for attackers.

Key findings of the report include:

Among the financial service leaders surveyed for the 2026 API Security Impact Study, 96% reported at least one API security incident over the past 12 months, the highest among all industries.
In 2025, 60% of total web attacks and 83% of incursions against API endpoints targeted banking.
Nearly 80% of financial institutions have faced ransomware attacks in the past two years, yet less than half have adopted advanced security technologies.
Advanced bot activity surged by 147% in late 2025 — and, in one case study, a staggering 96% of all site traffic was identified as malicious scraping bots.
Cyberattack methods against financial services vary significantly by region: EMEA is the primary target for Layers 3 and 4 DDoS (62%), APAC is the most targeted by Layer 7 DDoS (52%), and in North America, web attacks are the most prevalent (44%).

“Cybercriminals and hacktivists continue to escalate DDoS from nuisance attacks to a sustained siege encompassing both hacktivism and cybercrime, and financial services are in the crosshairs," said Steve Winterfeld, Advisory CISO of Akamai. “In addition, the data shows that APIs are increasingly targeted as AI doesn't reduce traditional security risks, it puts them on steroids. Fortunately, financial services organizations can leverage the security strategies and best practices detailed in this report."

AI-Empowered Botnets and API Visibility Gaps: Attack Trends in Financial Services also includes: data-supported trends on criminal activity, a guest column by the CISO of FS-ISAC, a security spotlight on MITRE capabilities, a cloud spotlight on the differences among AI architectures, and practical DNS and DDoS attack mitigation strategies.

Now in their 12th year, Akamai’s SOTI Security reports continue to offer critical insights on cybersecurity trends and web performance, drawn from attacks viewed across Akamai’s cybersecurity protective infrastructure, which handles a significant portion of global web traffic.

About Akamai

Akamai is the cybersecurity and cloud computing company that powers and protects business online. Our market-leading security solutions, superior threat intelligence, and global operations team provide defense in depth to safeguard enterprise data and applications everywhere. Akamai’s full-stack cloud computing solutions deliver performance and affordability on the world’s most distributed platform. Global enterprises trust Akamai to provide the industry-leading reliability, scale, and expertise they need to grow their business with confidence. Learn more at akamai.com and akamai.com/blog, or follow Akamai Technologies on X and LinkedIn.

Contacts
Akamai Media Relations
akamaipr@akamai.com

Akamai Investor Relations
invrel@akamai.com

FAQ

What did Akamai (NASDAQ: AKAM) reveal about DDoS risks to financial services in May 2026?

Akamai reported that financial services are now the top target for web and API DDoS attacks. According to Akamai, pro-Iran hacktivists and AI-powered bots increasingly disrupt online banking, payment systems, and applications, turning DDoS from brief nuisances into longer, more complex campaigns.

How much has the median DDoS attack duration on financial services increased, according to Akamai (AKAM)?

Akamai found the median duration of global Layer 3 and 4 DDoS attacks on financial services is up 738% since 2024. According to Akamai, this surge reflects AI-powered infrastructure enabling attackers to sustain disruptive activity against banks and payment providers for far longer periods.

How common are ransomware and API security incidents in financial institutions, per Akamai’s 2026 study?

Akamai’s research shows nearly 80% of financial institutions faced ransomware attacks in the past two years. According to Akamai, 96% of financial service leaders reported at least one API security incident, yet less than half have deployed advanced security technologies to address these threats.

What regional attack trends against financial services did Akamai (NASDAQ: AKAM) highlight?

Akamai observed that EMEA is the primary target for Layers 3 and 4 DDoS, accounting for 62% of such attacks. According to Akamai, APAC sees 52% of Layer 7 DDoS, while North America experiences 44% of web attacks on financial services.

How are AI-powered bots changing cyberattacks on financial services in Akamai’s 2026 SOTI report?

Akamai reported advanced bot activity surged 147% in late 2025, with one case showing 96% of site traffic as scraping bots. According to Akamai, AI does not reduce traditional risks; instead, it amplifies them, enabling more persistent, automated attacks on financial services APIs and websites.