Nandedkar, A. (2025) The API economy: How APIs are shaping the future of digital transformation.
[online] Medium. Available at: https://aditya-nandedkar.medium.com/the-api-economy-how-apis-
are-shaping-the-future-of-digital-transformation-eb601e99f85e [Accessed 13 Jun. 2025].
Akamai (2024) New study finds 84% of security professionals experienced an API security incident in
the past year. [online] Akamai. Available at: https://www.akamai.com/newsroom/press-release/new-
study-finds-84-of-security-professionals-experienced-an-api-security-incident-in-the-past-year
[Accessed 13 Jun. 2025].
Thales Group (2024) Vulnerable APIs and Bot Attacks Costing Businesses Up to $186 Billion Annually.
[online] Thales Group. Available at: https://cpl.thalesgroup.com/about-us/newsroom/vulnerable-
apis-bot-attacks-costing-businesses-186-billion [Accessed 13 Jul. 2025].
OWASP (2023) OWASP API Security Project. Available at: https://owasp.org/www-project-api-
security/ [Accessed 14 Jun. 2025].
Madupati, B. (2023) Comprehensive Approaches to API Security and Management in Large-Scale
Microservices Environments. [online] SSRN. Available at: https://ssrn.com/abstract=5076630
[Accessed 15 Jun. 2025].
Sindall, G. (2024) 8 Enterprise API Security Strategy Best Practices. [online] DigitalML. Available at:
https://www.digitalml.com/enterprise-api-security-strategy-best-practices/ [Accessed 17 Jun. 2025].
Innovate Finance (2025) New research reveals API security crisis: 84% of enterprises risk exposing
sensitive data. [online] Innovate Finance. Available at: https://www.innovatefinance.com/blogs/new-
research-reveals-api-security-crisis-84-of-enterprises-risk-exposing-sensitive-data/ [Accessed 6 Jul.
2025].
Das, I. (2024) Empowering Small Businesses in the Digital Age: A Must-Read Guide to Web
Application & API Security. [online] Qualys. Available at:
https://blog.qualys.com/product-tech/2024/04/22/empowering-small-businesses-in-the-digital-age-
a-must-read-guide-to-web-application-api-security [Accessed 19 Jun. 2025].
Rahmonbek, K. (2025) 35 Alarming Small Business Cybersecurity Statistics for 2025. [online]
StrongDM. Available at: https://www.strongdm.com/blog/small-business-cyber-security-statistics
[Accessed 13 Jul. 2025].
Verizon (2025) 2025 Data Breach Investigations Report: Small- and Medium-Sized Business Snapshot.
[online] Verizon. Available at: https://www.verizon.com/business/resources/infographics/2025-dbir-
smb-snapshot.pdf [Accessed 20 Jun. 2025].
NinjaOne. (2025) 7 SMB Cybersecurity Statistics You Need to Know in 2025. Available at:
https://www.ninjaone.com/blog/smb-cybersecurity-statistics/ (Accessed: 2 July 2025).
Ali, M., Khan, S.U. and Vasilakos, A. v. (2015) “Security in cloud computing: Opportunities and
challenges,” Information Sciences, 305. Available at: https://doi.org/10.1016/j.ins.2015.01.025.
[Accessed on 1 June 2025]
Atlidakis, V., Godefroid, P. and Polishchuk, M. (2020) “Checking Security Properties of Cloud Service
REST APIs,” in Proceedings - 2020 IEEE 13th International Conference on Software Testing,
Verification and Validation, ICST 2020. Available at: https://doi.org/10.1109/ICST46399.2020.00046.
[Accessed on 1 June 2025]
�Asemi, Hadi (2023) A Study on API Security Pentesting Available at:
https://www.proquest.com/openview/431b544974bbeb4cf446f1ec33fe341e/1?pq-
origsite=gscholar&cbl=18750&diss=y [Accessed on 2 June 2025]
Traceable AI. (2025). 2025 Global State of API Security. Available at: https://www.traceable.ai/wp-
content/uploads/2024/10/2025-Global-State-of-API-Security.pdf (Accessed: 1 July 2025).
Akamai. (2025). API Security Impact Study 2025. MySecurity Marketplace. Available at:
https://mysecuritymarketplace.com/reports/api-security-impact-study-2025/ (Accessed: 1 July
2025).
Raidiam. (2025). Raidiam research: 84% of enterprises risk sensitive data exposure due to API
security gaps. Intelligent CISO. Available at: https://www.intelligentciso.com/2025/07/02/raidiam-
research-84-of-enterprises-risk-sensitive-data-exposure-due-to-api-security-gaps/ (Accessed: 1 July
2025).
Gupta, D., Singh, N. and Sharma, M. (2024) Cloud Security Challenges and Solutions: A Review of
Current Best Practices. ResearchGate. Available at:
https://www.researchgate.net/publication/387558426_Cloud_Security_Challenges_and_Solutions_A
_Review_of_Current_Best_Practices (Accessed: 1 July 2025).
Hadi, A. J. and Nugroho, S. (2020) 'Security analysis of REST API using OWASP ZAP and Postman',
Journal of Physics: Conference Series, 2094(3), p. 032016. Available at:
https://iopscience.iop.org/article/10.1088/1742-6596/2094/3/032016/pdf (Accessed: 1 July 2025).
Hadjimichael, L. and Mitropoulos, K. (2023) API Security Testing: The Challenges of Security Testing
for Restful APIs. ResearchGate. Available at:
https://www.researchgate.net/publication/371174422_API_Security_Testing_The_Challenges_of_Se
curity_Testing_for_Restful_APIs (Accessed: 1 July 2025).
Krasniqi, F. (2018) Improving Web Application Security Using Open-Source Tools. Bachelor's thesis.
University of Gävle. Available at: https://core.ac.uk/reader/542974100 (Accessed: 2 July 2025).
SentinelOne. (n.d.) Open Source Software Security Risks. Available at:
https://www.sentinelone.com/cybersecurity-101/cybersecurity/open-source-software-security-risks/
(Accessed: 1 July 2025).
