Application and API attacks on the rise in EMEA

Akamai recorded a 21% increase in web attacks between Q1 2023 and Q1 2024.

  • Wednesday, 31st July 2024 Posted 1 year ago in by Phil Alsop

Akamai Technologies has released a new State of the Internet report that shows monthly web application and API attack activity remained elevated during the first six months of 2024 in Europe, the Middle East and Africa (EMEA). ‘Digital Fortresses Under Siege: Threats to Modern Application Architectures’ shows that a monthly average of 40% of those web attacks target APIs. This is not surprising given the high adoption of APIs in EMEA, which is driven in part by regulation.

The number of Layer 3 and 4 DDoS attacks also grew steadily in EMEA, surpassing the number of attacks in North America in five of the past seven months. The financial services sector bore the brunt of these attacks with 1,523 attack events, followed by manufacturing at 890. Russian

hacktivist groups declared their intention to launch DDoS attacks on the European banking system, and we surmise that the main reason for the rise in DDoS attack events in the financial services industry is this geopolitical hacktivism.

‘Digital Fortresses Under Siege: Threats to Modern Application Architectures’ also finds:

The top three countries most impacted by web application and API attacks were the United Kingdom (20.5 billion), the Netherlands (15.6 billion), and Spain (12.7 billion).

Commerce was the most impacted industry for web attacks in EMEA driven by a high percentage of API attacks, and was also the most impacted industry for Layer 7 DDoS attacks

Layer 7 DDoS attacks on APIs remained fairly steady and accounted for 25% of those attacks.

Within EMEA, the areas with the highest number of Layer 7 DDoS attacks were Germany (461 billion) and the United Kingdom (366 billion), followed by Sweden (167 billion)

Richard Meeus, Director of Security Technology and Strategy, EMEA at Akamai, said: ‘Europe is beset by a barrage of API attacks. Applications are great enablers of communication but they can also be the Achilles’ heel of an organization if not shielded effectively. The increase of web application and API attacks in EMEA underscores the importance of protecting networks effectively to ensure no bad actors can leverage this increased attack surface. This is no longer just a revenue and reputation risk but also a matter of compliance with key EU directives such as NIS2 and DORA. ’

EU Data Act spurs SMEs to rethink cloud strategies

Posted 18 hours ago by Aaron Sandhu
The EU Data Act is pushing SMEs and MSPs towards a multi-cloud, multi-vendor approach to mitigate vendor lock-in while fostering business agility.
Nebula Global Services joins the ranks of the UK's fastest-growing businesses, marking a milestone in sustainable technology innovation.
11:11 Systems unveils research revealing IT leaders' overconfidence amidst cyber threats, with Europe facing intense complexities and urgent need for...

Assurix pioneers real-time trustmark for MSPs

Posted 1 week ago by Aaron Sandhu
Assurix unveils a groundbreaking trustmark, offering live proof for MSPs to fortify proposals and minimise insurance challenges.
Cisco's upcoming 360 Partner Programme signals a transformative shift for partners, introducing a streamlined, value-driven approach.
A true competitive advantage is what separates thriving companies from those struggling to keep pace in today’s demanding marketplace. The...
Over 300 MSP leaders gather for a day of critical strategy, technical innovation and growth‑oriented panels; “M&A” and “MSP Growth” panels...

Arrow Electronics triumphs at ChannelWatch Awards 2025

Posted 4 weeks ago by Aaron Sandhu
Arrow Electronics secures four prestigious recognitions, cementing its leadership in the IT distribution sector.