CYBERSTATS

Security Intelligence

VendorsWallarm

Wallarm

Cybersecurity reports and statistics published by Wallarm

8 categories5 reports

Research Reports

Reports and publications from Wallarm

API ThreatStats Report 2026

Wallarm Releases Q3 2025 API ThreatStats Report: API Vulnerabilities Up 20%, MCP Risks Surge 270%

The Rise of Agentic AI API ThreatsStats Report Q1 2025

2025 API ThreatStats Report

AI Security Is API Security

Recent Statistics & Reports

In 2025, 36% of AI-related KEVs involved an API attack surface.

AI-related VulnerabilitiesAPI SecurityAI-related KEVs

In 2025, 43% of CISA KEV additions were API-related, making APIs the single largest exploited surface in that dataset.

API SecurityAPIsKEV

In 2025, 36% of AI-related vulnerabilities involved APIs (786 of 2,185 AI-related vulnerabilities).

AI-related VulnerabilitiesAPI SecurityAPIs

In 2025, 14% of published AI vulnerabilities were MCP-related (315 MCP-related vulnerabilities).

AI VulnerabilitiesModel Context ProtocolVulnerabilities

97% of API vulnerabilities can be exploited with a single request.

API SecurityExploitabilityAPI Vulnerabilities

MCP vulnerabilities grew 270% from Q2 to Q3 in 2025.

AI SecurityModel Context ProtocolMCP Vulnerabilities

98% of API vulnerabilities are easy or trivial to exploit.

API SecurityExploitabilityVulnerabilities

59% of API vulnerabilities require no authentication.

API SecurityAuthenticationAPI Vulnerabilities

In 2025 breach data, AI platforms and tooling accounted for 15% of API-related breaches, tying software as the largest category in the dataset.

Data BreachesAI PlatformsAPI Security

In 2025, 17% of 67,058 published vulnerabilities (11,053 vulnerabilities) were API-related.

API SecurityVulnerabilitiesAPI Vulnerabilities

99% of API vulnerabilities are remotely exploitable.

API SecurityRemote ExploitationAPI Vulnerabilities

In Q3 2025, there were 1,602 disclosed API-related vulnerabilities, representing a 20% increase from Q2 2025.

APIVulnerabilities

In Q3 2025, Security Misconfiguration accounted for 38% of all API flaws, rising by 33% from Q2 2025.

APIVulnerabilities

In Q3 2025, 16% of vulnerabilities added to CISA's Known Exploited Vulnerabilities catalog were API-related.

APIVulnerabilities

In Q3 2025, vulnerabilities related to Agentic AI rose by 67%, indicating early signs of risk in autonomous orchestration.

APIVulnerabilities

In Q3 2025, authorization issues made up 28% of all API vulnerabilities.

APIVulnerabilities

In Q3 2025, Model Context Protocol vulnerabilities surged by 270% compared to Q2 2025.

APIVulnerabilities

In Q3 2025, AI-API vulnerabilities increased by 57%, driven by a 270% rise in Model Context Protocol vulnerabilities.

APIVulnerabilities

Over 700 issues in Agentic AI repositories remain unaddressed.

AIAgentic AIVulnerabilities

60% of top vulnerabilities found in Agentic AIwere access control-related

AIAgentic AIVulnerabilities

Showing 1-20 of 59 results

Top Categories

Vulnerabilities

8

7

Related Vendors

Specops Software