NewKerala.com

API Security Lapses Cost APAC Firms Over $1 Million Each on Average

A new report by Akamai Technologies reveals that API security incidents now cost APAC firms over $1 million on average, up sharply from $580,000 last year. 81% of organizations in the region experienced at least one incident in the past 12 months, with India and Singapore reporting the highest exposure rates. Attacks targeting APIs connected to AI technologies are the most common type, cited by 43% of respondents. The report warns that weak API visibility creates both cybersecurity risks and compliance challenges as AI adoption accelerates.

Key Points: API Security Incidents Cost APAC Firms $1M on Average

  • Average API security incident cost exceeds $1 million
  • 81% of APAC firms hit in past 12 months
  • India (93%) and Singapore (90%) most exposed
  • Only 22% maintain complete API inventory
2 min read

API security incidents cost APAC firms over $1 million on average: Report

Report: API security incidents cost APAC firms over $1 million on average. 81% of orgs hit in 12 months. India, Singapore most exposed.

"APIs are becoming critical infrastructure for AI-powered services, and weak visibility or governance could lead to service disruptions, higher recovery costs and loss of consumer trust. - Reuben Koh"

New Delhi, May 12

As enterprises across the Asia Pacific region rapidly adopt artificial intelligence technologies, API security incidents are imposing steep financial costs, with the average estimated loss per incident now exceeding $1 million, a report showed on Tuesday.

The report by Akamai Technologies highlighted that 81 per cent of organisations in the region experienced at least one API security incident in the past 12 months.

The average cost per incident has risen sharply from around $580,000 in last year's study to more than $1 million, reflecting growing cyber risks as AI adoption accelerates, the report said.

It noted that attacks involving APIs connected to AI technologies, including applications, AI agents and large language models (LLMs), emerged as the most common type of security incident, cited by 43 per cent of respondents.

Moreover, India and Singapore reported the highest exposure to API-related attacks, with 93 per cent and 90 per cent of organisations, respectively, reporting at least one incident during the year.

Meanwhile, Japan recorded the highest average financial impact per breach at $1.59 million, followed by Singapore at $1.33 million per incident.

The report also pointed to a major visibility gap in enterprise security systems, as only 22 per cent of respondents said they maintained a complete inventory of APIs and knew which of them handled sensitive data.

However, while 72 per cent of organisations said their focus on API security increased over the past year, only 19 per cent reported fully embedding security testing into their API software development and deployment processes.

Reuben Koh said organisations across APAC are rapidly scaling AI adoption, but the security foundations supporting those systems remain inadequate.

He noted that APIs are becoming critical infrastructure for AI-powered services, and weak visibility or governance could lead to service disruptions, higher recovery costs and loss of consumer trust.

The report cautioned that weak API visibility is emerging not only as a cybersecurity risk but also as a compliance challenge, especially as AI services become more deeply integrated into business operations.

- IANS

Share this article:

Reader Comments

R
Ravi K
India leading in API attacks? That's a double-edged sword. We're early adopters of digital infrastructure, but our cybersecurity talent is still catching up. ₹9 crore per incident is no joke for startups and SMEs. Time for companies to treat API security like a business priority, not an IT checkbox.
P
Pooja D
The visibility gap is terrifying—only 22% know their full API inventory?! 🤯 We're building AI on shaky foundations. Reuben Koh is right: weak governance leads to loss of consumer trust. Indian regulators need to step up and mandate security audits for APIs handling sensitive data, especially with AI integration booming.
J
Jennifer L
These numbers are disturbing but not shocking. $1M+ per incident in APAC reflects how interconnected our digital economies are. India and Singapore being hotspots makes sense given our digital adoption. What's worrying is only 19% embedding security into their dev processes—we're still leaving the stable door open after the horse has bolted.
A
Arjun K
As someone working in fintech, I see this daily. APIs are the backbone of India's UPI and digital payments, but most companies I've worked with have zero clue about their API attack surface. The ₹8.5 crore average loss is just the tip of the iceberg—reputation damage and regulatory fines will hurt more. It's time for CISOs to get serious about API security, not just AI hype. 😤
S
Sarah B
The compliance angle is key. With India's DPDP Act coming into force, weak API visibility isn't just a security risk—it's a legal minefield. Companies handling sensitive

We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.

Leave a Comment

Minimum 50 characters 0/50