New Research Reveals Critical Gaps in Web App and API Security as Attack Complexity Grows
Despite widespread security adoption, organizations struggle to keep pace with rapid API expansion, multi-cloud challenges, and increasingly sophisticated cyberattacks, highlighting the pressing need for consolidated and automated defense solutions.
With organizations increasingly dependent on applications and APIs to generate revenue, the digital landscape is expanding at an unprecedented rate. On average, the surveyed experts project a
As application security becomes critical, the risks have also increased. According to the study,
Despite
"The rapid growth of APIs has fundamentally changed application environments and introduced significant security and governance challenges, from misconfigurations to API injection and volumetric DDoS attacks. Yet as organizations have layered multiple WAFs and bot management tools to address these risks, complexity has grown," said John Grady, principal analyst at TechTarget’s Enterprise Strategy Group. "We’ve reached a tipping point where adding different security tools provides diminishing returns. Cybersecurity and IT teams should be looking at ways to simplify operations and improve security by consolidating solutions that offer both automation and specialized protection from a wide range of threats."
The research also highlights a troubling trend:
"Speed is critical in application security, and automated attacks demand equally fast automated defenses to ensure privacy and security regulations are met and user information is protected," said Fernando Medrano, Deputy Chief Information Security Officer at Fastly. "As web applications and APIs continue to grow in prominence, organizations need to consider integrating security into the product development process early on rather than treat it as an afterthought."
To access the full report and explore how businesses are consolidating tools and shifting spending in response to high-profile cybersecurity incidents, click here. For additional insights from Fastly about the report findings and strategies for strengthening security, visit our blog.
About the Research
ESG surveyed 383 cybersecurity and IT professionals involved in securing their organizations' web applications in both midmarket and enterprise organizations across
About Fastly, Inc.
Fastly’s powerful and programmable edge cloud platform helps the world’s top brands deliver online experiences that are fast, safe, and engaging through edge compute, delivery, security, and observability offerings that improve site performance, enhance security, and empower innovation at global scale. Compared to other providers, Fastly’s powerful, high-performance, and modern platform architecture empowers developers to deliver secure websites and apps with rapid time-to-market and demonstrated, industry-leading cost savings. Organizations around the world trust Fastly to help them upgrade the internet experience, including Reddit, Neiman Marcus, Universal Music Group, and SeatGeek. Learn more about Fastly at https://www.fastly.com, and follow us @fastly.
Source: Fastly, Inc.
View source version on businesswire.com: https://www.businesswire.com/news/home/20250204491642/en/
Media Contact
Spring Harris
press@fastly.com
Investor Contact
Vernon Essi, Jr.
ir@fastly.com
Source: Fastly, Inc.