Tech News

Tech Business News

  • Home
  • Technology
  • Business
  • News
    • Technology News
    • Local Tech News
    • World Tech News
    • General News
    • News Stories
  • Media Releases
    • Tech Media Releases
    • General Media Releases
  • Advertisers
    • Advertiser Content
    • Promoted Content
    • Sponsored Whitepapers
    • Advertising Options
  • Cyber
  • Reports
  • People
  • Science
  • Articles
    • Opinion
    • Digital Marketing
    • Gaming
    • Guest Publishers
  • About
    • Tech Business News
    • News Contributions -Submit
    • Journalist Application
    • Contact Us
Reading: Cybercriminals Launch Over 40,000 API Attacks in Six Months
Share
Font ResizerAa
Tech Business NewsTech Business News
  • Home
  • Technology News
  • Business News
  • News Stories
  • General News
  • World News
  • Media Releases
Search
  • News
    • Technology News
    • Business News
    • Local News
    • News Stories
    • General News
    • World News
    • Global News
  • Media Releases
    • Tech Media Releases
    • General Press
  • Categories
    • Crypto News
    • Cyber
    • Digital Marketing
    • Education
    • Gadgets
    • Technology
    • Guest Publishers
    • IT Security
    • People In Technology
    • Reports
    • Science
    • Software
    • Stock Market
  • Promoted Content
    • Advertisers
    • Promoted
    • Sponsored Whitepapers
  • Contact & About
    • Contact Information
    • About Tech Business News
    • News Contributions & Submissions
Follow US
© 2022 Tech Business News- Australian Technology News. All Rights Reserved.
Tech Business News > Cyber > Cybercriminals Launch Over 40,000 API Attacks in Six Months
Cyber

Cybercriminals Launch Over 40,000 API Attacks in Six Months

Cybercriminals have dramatically shifted their focus to application programming interfaces (APIs), launching more than 40,000 attacks in the first six months of 2025 alone—averaging over 220 incidents daily, according to new research from cybersecurity firm Thales.

Matthew Giannelis
Last updated: September 28, 2025 6:13 pm
Matthew Giannelis
Share
SHARE

Thales latest API Threat Report reveals a troubling reality: while APIs represent just 14% of the overall digital attack surface, they are attracting 44% of advanced bot traffic, indicating a strategic pivot toward highly automated and sophisticated targeting methods.

Unprecedented Scale of Digital Assault

Thales analysed over 4,000 monitored environments to compile its findings, documenting what security experts are calling a fundamental shift in cybercriminal tactics.

If current attack rates persist, the total could surpass 80,000 API-related incidents by year-end, representing an escalation in both volume and complexity.

The most dramatic incident recorded was a massive 15 million requests-per-second distributed denial-of-service (DDoS) attack targeting a financial services API.

Unlike conventional bandwidth-flooding techniques, this assault specifically targeted the application layer, overwhelming the API infrastructure to disrupt critical financial transactions. Financial services organisations have borne the heaviest impact, absorbing 27% of all API-focused DDoS traffic.

The concentration reflects the sector’s heavy dependence on APIs for real-time operations including payments processing, balance inquiries, and fund transfers—making them particularly vulnerable to service disruption.

Evolution of Attack Sophistication

Cybercriminals have refined their methods to evade detection more effectively.

Attackers now routinely deploy headless browsers and sophisticated botnets designed to mimic legitimate user behaviour, significantly complicating efforts by security teams to distinguish malicious requests from normal traffic patterns.

The research identifies clear targeting preferences among attackers. Data-access APIs represent the most attractive targets, accounting for 37% of all incidents, while checkout and payment APIs follow at 32%.

Authentication systems comprise 16% of attacks, with gift card and promotional validation APIs making up 5%. Shadow or misconfigured APIs, though representing just 3% of incidents, remain a critical security blind spot for organisations.

Attack Methods Intensify

Several attack vectors have shown particularly concerning growth patterns. Credential stuffing and account takeover attempts surged 40% against APIs lacking adaptive multi-factor authentication (MFA).

Data scraping operations now represent 31% of all API bot activity, as attackers seek valuable personal and financial information.

Coupon and payment fraud comprised 26% of documented incidents, exploiting weaknesses in promotional and checkout validation systems.

Remote code execution probes accounted for 13% of attacks, frequently targeting known vulnerabilities in systems including Log4j, Oracle WebLogic, and Joomla platforms.

Industry distribution shows financial services leading incident reports at 27%, followed by travel companies at 14%, entertainment and arts organisations at 13%, and telecommunications and internet service providers at 10%.

Tim Chang, Vice President of Application Security Products at Thales, said, “APIs are the digital economy’s connective tissue – but that also makes them its most attractive attack surface.

“What we’re witnessing is not just the scale of attacks increasing, but a fundamental shift in how criminals operate: they don’t need to inject malware, they can simply bend your business logic against you. The requests look legitimate, but the impact can be devastating.” said Chang

Daniel Toh, Chief Solution Architect for Asia-Pacific and Japan at Thales, warned that attacks are likely to grow in both volume and sophistication over the coming months.

“The next six months will only see the volume and sophistication of API attacks grow across the region. The best time to act was yesterday – the next best time is now,”

“Organisations in Singapore must discover every live endpoint, understand its business value, and protect it with context-aware, adaptive defences if they are to safeguard revenue, trust and compliance.”

Urgent Security Imperative

The findings underscore an immediate need for organisations to comprehensively audit their API landscapes, implement adaptive multi-factor authentication systems, and strengthen monitoring capabilities for shadow APIs.

Security experts warn that failure to address these vulnerabilities could expose businesses to increasingly sophisticated bot traffic and targeted exploitation attempts.

ByMatthew Giannelis
Follow:
Secondary editor and executive officer at Tech Business News. An IT support engineer for 20 years he's also an advocate for cyber security and anti-spam laws.
Previous Article Preventing network failures could save Singapore businesses billions Network Failures Costing Singapore Businesses Billions
Next Article How Hyperlinks Became an Internet Commodity And Currency Instead of Organic link Ranking Factors How Hyperlinks Became Internet Currency Instead Of Organic Ranking Signals
Leave a Comment

Leave a Reply Cancel reply

You must be logged in to post a comment.

APIs become top target for cybercriminals with over 40,000 incidents in early 2025

Tech Articles

The Decay of guest blogging posts

The Decay of Guest Blogging. It Got Cheap, Automated, and Spammy.

Guest blogging once helped publishers showcase real expertise and build…

June 9, 2026
The Growing Crisis of Space junk and Debris

Space Junk Is Becoming One of the Biggest Threats to Modern Spaceflight

More than 33,000 tracked objects now orbit Earth at speeds…

May 8, 2026
Your Phone Is Spying on You and tracking location

Your Phone Is Spying on You — Here’s How to Stop It

Your phone is spying, tracking your location, searches, app activity,…

July 11, 2026

Recent News

Sextortion scams Barracuda threat spotlight
Cyber

Sextortion Scams On The Rise And Growing In Sophistication

7 Min Read
Pro Matt Warren RMIT Cyber
Cyber

Australia should be prepared for Russia’s Cyber Reaction

2 Min Read
Australian councils urged to adopt managed security services
Cyber

Cybersecurity Experts Urge Australian Councils to Embrace MSSPs Amid Surge in Cyberattacks

5 Min Read
AFP Medibank data breach russian hackers
Cyber

AFP Points The Finger At Russian Hackers For Medibank Data Breach

2 Min Read
Tech News - Technology Business

Tech Business News

In 2026, technology news is shaping business outcomes faster than ever—driven by AI adoption, rising cyber risk, cloud modernisation, data regulation, and constant platform change.
 
Tech News keeps Australian organisations and industry professionals informed with timely reporting and practical coverage across AI, cybersecurity, cloud, enterprise IT, startups, science, people and business, plus major world and local news impacting the tech sector.
 
Tech Business News publishes news and analysis designed to be clear, relevant, and easy to act on. It supports the industry with technology news reports, whitepaper publishing services, and a range of media, advertising and publishing options 

About

About Us 
Contact Us 
Privacy Policy
Copyright Policy
Terms & Conditions

July, 17, 2026

Contact

Tech Business News
Melbourne, Australia
Werribee 3030
Phone: +61 431401041

Hours : Monday to Friday, 9am 530-pm.

Tech News

© Copyright Tech Business News 

Latest Australian Tech News – 2026

Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?