Upwind Introduces API Security Solution With Real-Time Insights at the Runtime Level

SAN FRANCISCO, CA, March 13, 2024 – Upwind today announced its latest addition to its Cloud Security Platform: API security. This new feature, used in conjunction with Upwind's eBPF-based sensor, positions Upwind as the sole Cloud Security Platform capable of detecting and responding to API threats in real-time at the runtime level.

The integration of Application Programming Interfaces (APIs) into system designs has seen a dramatic increase, with a more than 200% hike from July 2022 to July 2023. This surge is expected to grow further, influenced by the rapid adoption of AI technologies. However, this increase in API usage has coincided with a rise in security incidents. Checkpoint's data shows that attempts to attack Web APIs rose by 20% in January 2024 compared to January 2023, impacting 1 in 5 organizations weekly.

Upwind's evolution towards providing API security within its platform stems from recognizing the urgency for adaptive and robust API security as digital operations grow increasingly API-dependent. The platform's new API Security solution offers real-time, dynamic cataloging and mapping of an organization's APIs, drastically minimizing performance overhead while maximizing visibility. This approach leverages eBPF technology, avoiding traditional, resource-intensive techniques.

Furthermore, Upwind’s API Security capabilities grant organizations detailed visibility of their API landscape. This enables them to pinpoint attacks, test APIs for new vulnerabilities with context, discover malicious access attempts, and assess each endpoint's internet exposure. By reducing alert noise by 95%, Upwind directs security teams to the most significant API risks and vulnerabilities highlighted by OWASP and other application security organizations.

Amiram Shachar, Upwind's Co-Founder and CEO, emphasizes the importance of runtime insights for full visibility into significant threats, predicting APIs as the predominant attack vector in coming years. This positions Upwind's API security feature as critical for organizations aiming to prioritize their security efforts effectively.