Akamai Expands API Security To Address Visibility Gaps From Code To Production
Akamai's latest API Security enhancements address visibility gaps across the API development and production lifecycle. These enhancements include: Managed Service for API Security: The first managed service built specifically for API security, it combines real-time monitoring, expert response, and clear guidance to help organizations catch threats early and cut risk.
The first managed service built specifically for API security, it combines real-time monitoring, expert response, and clear guidance to help organizations catch threats early and cut risk. Integration with code repositories: This integration lets teams scan API specifications and code to spot risks before launch — even for APIs that haven't gone live yet.
This integration lets teams scan API specifications and code to spot risks before launch — even for APIs that haven't gone live yet. Compliance Dashboard: This dashboard gives teams a centralized view to check how their APIs stack up against key security and privacy standards — like the Payment Card Industry Data Security Standard (PCI DSS v4.0), the General Data Protection Regulation (GDPR), and the MITRE ATT&CK framework — making audits easier and reducing compliance risk.
Akamai customers increasingly highlight the benefits of API Security:
'Akamai API Security gives us a clear view of what data is being used and how, enabling us to minimize our attack surface while still delivering the best service possible to our customers.' — CTO of an insurance company
'[API Security] is the lighthouse for my AppSec team: Now we know what to focus on. It's a major data security tool for us. The deployment was very easy and they were true partners in the process. Now we can assess our risk in the most scientifically true way possible and control our destiny.' — CISO of a software company
'The tool is robust and responsive, and has given us peace of mind that we have visibility of everything happening at the API level.' — Executive in a healthcare and life sciences organization
Akamai's security solutions win awards
Three of the technology sector's top industry accolades were recently awarded to Akamai's security solutions.
'Companies are realizing that APIs are a prime target for attackers and securing them is essential to staying resilient, especially in the AI era,' said Rupesh Chokshi, Senior Vice President and General Manager of Akamai's Application Security Portfolio. 'It's great to see the traction we're getting in both adoption and recognition. It tells us we're solving real problems for our customers.'
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Arabian Post
4 days ago
- Arabian Post
Perplexity's Persistent Web Crawling Raises Ethical Concerns
Perplexity, a growing artificial intelligence company, has been repeatedly crawling websites against the wishes of content owners, prompting a wave of concern over digital ethics and user privacy. Despite multiple requests for the company to halt its web scraping activities, Perplexity continues to disregard these refusals, highlighting tensions between AI innovation and data ownership. AI-driven companies have long been at the forefront of technological development, but their web scraping practices often remain shrouded in controversy. Web scraping, or the automated extraction of data from websites, is integral to training AI models. However, the practice has sparked debates regarding the ethicality of harvesting content from sites without permission. Perplexity, which leverages web data to fuel its language models, is now in the spotlight after it ignored clear signals from website owners asking it to stop. Several notable websites have reported receiving persistent crawls from Perplexity's bots, even after issuing direct requests to cease their activities. The situation escalated after Perplexity failed to respect robots. txt files, which are used to instruct web crawlers on which pages to avoid. Such disregard for the standard protocol has led to frustration within the web community, with some arguing that companies like Perplexity are exploiting the openness of the internet without considering the broader implications of their actions. ADVERTISEMENT Tech industry leaders have weighed in, calling for better oversight of AI data collection practices. They argue that while AI can enhance innovation, there should be clear boundaries about the data it can use. In this case, Perplexity's actions seem to suggest a disregard for the principles of consent and fairness in the digital landscape. The company's approach to scraping raises important questions about the potential risks of AI's reliance on web data and the legal grey areas it creates. Legal experts have also warned that continuing to ignore these restrictions could lead to significant legal consequences for AI companies. The General Data Protection Regulation in the European Union, for example, offers users and companies a degree of control over how their data is collected and used. Infringing on these regulations could result in hefty fines for companies that fail to comply. Despite these concerns, some within the AI community have defended Perplexity's actions. Advocates argue that web scraping is an essential tool for advancing AI technology, claiming it enables the development of smarter and more efficient models. They contend that without access to vast amounts of data from the internet, AI systems would struggle to achieve the level of sophistication required to tackle complex tasks such as natural language processing and decision-making.
Web Release
5 days ago
- Web Release
GCG Enterprise Solutions Partners with Egnyte to Deliver Secure File Collaboration and Governance Across the Region
GCG Enterprise Solutions, a leader in digital transformation and secure content services is excited to announce its strategic partnership with Egnyte – the U.S.-based leader in secure content collaboration, intelligence, and governance. This collaboration brings to the region a unified platform that redefines how organizations manage, share, and protect their critical files in an era of hybrid work, stringent compliance, and increasing demand for secure collaboration. Egnyte's proven platform natively integrates with Microsoft 365, Google Workspace, AutoDesk, Salesforce, and more, enabling seamless project collaboration, vendor coordination, remote field access, and secure data rooms. This partnership also supports GCG's strategy to modernize file services, replace legacy file shares, and advance the UAE's cloud-first initiatives. Speaking on the new partnership with GCG Enterprise Solutions, Mohammad Alfaour, Director for the Middle East at Egnyte stated that 'We are excited to bring our offering to the region together with GCG Enterprise Solutions. As organizations across industries including architecture, engineering, construction (AEC), financial services, and life sciences face growing operational and regulatory complexities, the need for intelligent platforms that go beyond traditional file storage has never been greater. Egnyte's platform combines the simplicity of cloud file sharing with enterprise-grade control, making it the platform of choice for forward-thinking digital enterprises'. Elaborating on how the new partnership has expanded GCG Enterprise Solutions' capabilities in secure collaboration, Waleed Al Awadi, Head of Digital Transformation stated that 'This partnership significantly expands our capabilities in secure content services, compliance, and hybrid collaboration. By integrating Egnyte into our portfolio, we are now better positioned to serve sectors where data integrity, mobility, and auditability are mission-critical'. The GCG–Egnyte partnership delivers immediate, tangible benefits to clients across the region: Centralized, Secure Access: Organizations can now provide secure, centralized access to project and operational files across remote sites, departments, and external partners. Organizations can now provide secure, centralized access to project and operational files across remote sites, departments, and external partners. AI-Powered Compliance: Egnyte's AI-driven file classification, access controls, and compliance monitoring help clients meet regulations such as NESA, GDPR, and HIPAA. Egnyte's AI-driven file classification, access controls, and compliance monitoring help clients meet regulations such as NESA, GDPR, and HIPAA. Enhanced Productivity: Teams benefit from fast, reliable access to large files—including CAD and BIM models as well as large video footage and detailed renderings—even over low-bandwidth connections. Teams benefit from fast, reliable access to large files—including CAD and BIM models as well as large video footage and detailed renderings—even over low-bandwidth connections. Scalable Digital Foundation: The platform offers a robust foundation for digital project execution, secure collaboration, and content lifecycle governance enabling our clients to become AI-ready and structuring their data so they can utilize it across their portfolio. With this partnership, organizations can move away from fragmented file systems and embrace smart, compliant, and connected content operations—empowering them to thrive in today's digital landscape.
TECHx
01-08-2025
- TECHx
Startups Can't Afford to Ignore Cybersecurity: Interview
Home » Startups » Startups Can't Afford to Ignore Cybersecurity: Interview Fresh off an award win at GISEC North Star 2025, TECHx Media spoke with Vivek Chandran, CEO of RISKNOX Private Limited, for an interview featured in the recent June–July 2025 edition of CodeRED. In this conversation, he explains why cybersecurity has become a survival issue for startups. Size and speed no longer guarantee success. As cyberattacks grow more sophisticated, even early-stage startups are in the crosshairs. Once dismissed as too small to target, they now face the same threats as global enterprises. To understand what's at stake and what emerging businesses should do, Vivek brings a grounded, tactical view of the evolving threat landscape and how startup leaders can survive and thrive in 2025 and beyond. What are the top cybersecurity threats that startups should be most concerned about in 2025 and the coming years? The cybersecurity threat landscape isn't what it was even five years ago, it's evolving constantly. That's the first thing startups need to understand: it's not a static problem. The tools and tactics used by cybercriminals change every few months, if not weeks. If I had to pick the top three threats right now, AI-enabled cyberattacks would top the list. We're seeing a rise in sophisticated attacks powered by artificial intelligence, from deepfake phishing to automated vulnerability scanning and exploitation. These are faster, more adaptive, and harder to detect than traditional threats. Second, and this may surprise some, is human negligence. It's not a 'threat' in the classic sense, but it's often the root cause of security breaches. You can spend millions on tech, but one employee clicking the wrong link can still bring the system down. Humans remain the weakest link. And third, phishing is still a huge problem. It's old-school, but highly effective. Startups are particularly vulnerable because they often lack the infrastructure to detect and respond to social engineering attacks quickly. Phishing doesn't need to be advanced to be dangerous, it just needs to be convincing. How has the cybersecurity landscape changed over the past five years? What trends should startups keep an eye on? The past five years have been transformational. The biggest disruptor has been AI and, again, it's a double-edged sword. AI is helping us build smarter, more efficient cybersecurity tools that automate detection and response. But on the flip side, attackers are using the same AI to supercharge their campaigns. Another major shift is that every new technology introduces new vulnerabilities. AI, blockchain, IoT they all come with their own security challenges. And often, organizations adopt these technologies faster than they can secure them. Finally, governmental and regulatory forces are playing a bigger role. From GDPR to CCPA and now the Cyber Resilience Act, we're seeing a global trend toward mandatory cybersecurity compliance. This is actually a good thing it forces businesses to maintain at least a minimum viable security posture. Should cybersecurity be a legal responsibility for startups, or is that too ambitious at an early stage? In an ideal world, yes, cybersecurity would be a legal responsibility for every business, regardless of size. But in the real world, especially for startups, it's complicated. Startups often don't have the budget or the team to build a full-fledged cybersecurity framework. As a founder myself, I know how tough it is, cybersecurity can feel like a luxury when you're trying to stay afloat. But that doesn't mean startups are off the hook. What I believe and advocate is a shared responsibility model. Cybersecurity shouldn't be one person's job. Everyone, from founders to interns, should be aware of the basic principles of digital safety. Startups may not be able to do everything, but they can start with the basics: secure passwords, multi-factor authentication, data access control, and regular backups. These don't cost much but can go a long way. How do global data regulations like GDPR, CCPA, and the Cyber Resilience Act shape the way startups operate? They're reshaping the mindset and that's crucial. A few years ago, cybersecurity was often viewed as a luxury. Many smaller companies thought, 'Why would anyone target us?' That thinking no longer holds. These regulations are forcing accountability. They're saying: If you're collecting user data, you're responsible for securing it. No exceptions. And that accountability builds trust not just with regulators, but with customers. What these regulations have done is establish a baseline culture of cybersecurity. Even if a company isn't directly under the purview of something like GDPR, they often adopt the practices anyway to future-proof their operations. This is especially important as startups scale globally. Do you believe governments should impose stricter cybersecurity regulations on startups, or offer more support instead? Support first, regulations later. Imposing strict rules too early can backfire. Startups, already stretched thin, might try to find workarounds just to stay in business. What governments should do instead is invest in capacity-building offer grants, training programs, and subsidized tools. Help small businesses adopt best practices without breaking their budgets. Once there's a baseline maturity in the ecosystem, then phase in stricter compliance rules. This layered or phased approach is more sustainable and more effective in the long run. There's talk of a cybersecurity talent shortage. Is it really that hard to find skilled professionals? There's no shortage of interest but there is a gap between certifications and real-world skills. Many candidates have credentials but lack hands-on experience. Startups, in particular, need practical problem-solvers, not just textbook experts. What we need more of are experiential learning platforms, internships, cyber ranges, environments where people can learn by doing. For founders, my advice is to hire based on potential and adaptability. You might not be able to compete with tech giants on salary, but you can offer learning, autonomy, and purpose, which many securities professionals' values just as much. If you could give one piece of cybersecurity advice to every new founder, what would it be? Don't let lack of budget stop you from doing something. There are tons of free and low-cost resources out there from SANS to OWASP to NIST guidelines. You can absolutely build a minimal, but meaningful, cybersecurity foundation even if you're bootstrapping. Treat cybersecurity like any other critical function, your dev team, your HR, your marketing. It's not optional anymore. Even a basic security hygiene culture can drastically reduce your risk. Do you think cybersecurity will eventually be seen as a fundamental utility, as essential as electricity or water? Without a doubt. We already rely on digital infrastructure for everything, finance, healthcare, transportation, energy. If any of these go down due to a cyberattack, the consequences are devastating. Cybersecurity is no longer just about protecting data. It's about protecting lives and national security. We're also seeing how cyber warfare is becoming a central strategy in geopolitical conflicts. So yes, cybersecurity will and should, become a default layer of modern society. It's the new electricity. Invisible, but absolutely essential. Vivek Chandran's message to founders is clear: cybersecurity is a necessity, not a luxury. Startups may face budgetary and staffing constraints, but that's no excuse for ignoring the risks. From AI-driven threats to phishing scams and regulatory pressures, the cyber battlefield is real, and unforgiving. Fortunately, knowledge is power. And as Vivek points out, the tools to get started are already out there, many of them free. For founders in 2025, the goal isn't perfection, it's proactive protection
