API Threats Grow In Scale As AI Expands The Blast Radius
SecurityWeek, Tuesday, February 17th, 2026
New research shows attackers increasingly abusing APIs at machine speed as AI-driven systems widen exposure and amplify impact.
In an analysis of more than 60,000 published vulnerabilities disclosed in 2025, Wallarm found more than 11,000 (17%) were API-related. A concurrent analysis of CISA KEV Catalog additions for 2025 found 43% of exploited vulnerabilities were API-related.
The report demonstrates the severity of the threat by including details of the top ten API-relevant breaches from 2025. The top three are 700Credit, Qantas, and Salesloft.