Commissioned by Radware
Published June 2025
Executive summary
The rising menace of AI weaponized by threat actors has stormed onto the scene, dampening confidence in application security protections and threatening a renewed onslaught of attacks against applications. Indispensable application design constructs developed internally and across the supply chain remain ill-protected, even as usage relentlessly increases and threats multiply. Visibility into threats and security weaknesses is too low, and many organizations lack sufficient protections against new AI threats and business logic attacks, among others.
Key takeaways:
- AI-powered cyberthreats spark high concern, rapid response
- Applications are under attack from all directions
- New attacks against APIs exploit logic vulnerabilities
- Use of third-party service APIs is widespread, but not fully understood
- Application DDoS attacks are disruptive and costly