SLVA partners with APIsec
SLVA Cybersecurity has partnered with APIsec, a specialist API security company, to become a reseller of its solutions for automated APi testing.
As APIs have become more ubiquitous, they’ve also become easier to exploit, says SLVA’s CEO Patrick Evans. “You cannot simply monitor APIs in use anymore, and pre-production testing comes with its own time and labour challenges when you begin to scale APIs.”
With the exponential development of APIs, logic flaws tend to enter production, creating great risk that results in delays, extra expense and potentially even greater reputational risk, he adds.
He says a report published in March 2022 revealed that 95% of respondents experienced an API security incident during the previous year, and because of this, 62% of organisations say they have had to slow the rollout of a new applications into production.
“APIs play a critical role in enabling revenue, innovation, and deploying services at scale,” says Evans. “But quick to market and easy to deploy should never be at the expense of security.
However, the problem with APIs, even the ones that have been tested before production, is that the traffic through them always appears legitimate. "APIsec uses artificial intelligence logic to detect every possible threat vector rather than just the typical ones that normal security will check,” he says.
APIsec does this while the API is in development and testing, before it reaches production.
“Penetration testing is a huge milestone for most API developments, and it can potentially set projects back by months if vulnerabilities are found. APIsec mitigates this ever happening and shuts any loopholes that normal testing might have overlooked,” he adds.
“We chose to partner with APIsec because this solution is tailor-made to mitigate the most important threats to APIs, alleviating the complicated burdens that CISOs face in organisations today,” Evans ends.