Wallarm, the leading unified platform for API and agentic AI security, today announced the release of its Q2 2025 API ThreatStats Report. The report offers a deep dive into the evolving API threat landscape, spotlighting a dramatic rise in logic-layer vulnerabilities and threats targeting AI development and orchestration environments.
Wallarm analysis discovered this quarter marked a notable rise in AI-powered API vulnerabilities, underscoring the expanding attack surface introduced by LLMs and agent-driven architectures. Real-world breaches from SaaS collaboration platforms to cloud infrastructure highlight the consequences of insecure defaults, weak authentication, and limited runtime visibility. Taken together, these findings reinforce the urgent need for organizations to adopt a proactive, runtime-first approach to API security to stay ahead of adversaries in an increasingly hostile digital environment.
“Attackers are no longer just scanning for outdated libraries, they’re exploiting the way APIs behave, especially those powering AI systems and automation,” said Ivan Novikov, CEO and Co-founder of Wallarm. “Security teams must expand their visibility to include runtime context and adopt testing approaches that match the complexity of today’s dynamic, interconnected APIs.”
Key insights from the report include:
- API vulnerabilities are accelerating and increasing in their impact and complexity- 639 API-related CVEs were disclosed in Q2 2025, continuing a quarter-over-quarter upward trend. The majority of these CVEs were Critical or High Severity, underscoring the urgent need for runtime protection.
- AI-Powered APIs are emerging as a prime attack vector – 34 vulnerabilities were tied to AI-related APIs, highlighting the growing attack surface introduced by large language models (LLMs), AI services, and agent frameworks. One of the public breaches includes an AI agent vulnerability underscoring their real-world exploitation.
With APIs at the center of digital transformation and attackers increasingly focused on exploiting them, the Q2 2025 API ThreatStats Report provides security leaders with the data and guidance needed to safeguard critical systems. Wallarm remains committed to delivering research, insights, and solutions that help organizations stay ahead of evolving threats and protect the modern API ecosystem.