NOMINATION HIGHLIGHTS

APIs are the connective tissue of modern business and the single most exploited attack surface. In 2025 alone, 17% of all published vulnerabilities were API-related, 43% of CISA Known Exploited Vulnerabilities (KEVs) involved APIs, and 36% of AI-related vulnerabilities also involved an API attack surface.

As AI systems and agentic applications increasingly rely on APIs, the risk surface has expanded dramatically. Wallarm addresses this challenge with a unified, enterprise-grade platform purpose-built to secure APIs and AI at scale. Wallarm’s Advanced API Security Product delivers comprehensive protection through a single, scalable solution that combines:

-Automated API discovery and attack surface management
-Real-time API threat prevention (inline and out-of-band)
-Advanced response capabilities with granular controls
-Continuous API security testing integrated into DevOps workflows
-MCP & Agentic AI Protection: Purpose-built controls for Model Context Protocol and AI agent APIs – securing the fastest-growing and least-understood API attack surface emerging today.

The platform automatically discovers and inventories APIs across cloud, hybrid and on-prem environments, identifying shadow, zombie and drifted APIs while assessing exposure and risk. This visibility enables organizations to understand and secure their true API attack surface.

For a few examples of how Wallarm’s innovation sets it apart in the API security category:

-API Session Blocking: Enables precise, session-level enforcement to surgically block malicious activity without disrupting legitimate users or machine-to-machine traffic.
-Schema-Based Testing: Leverages API schemas to detect vulnerabilities earlier in the development lifecycle, reduce false positives and accelerate remediation.
-Patented AI/ML-based abuse detection: Focused on stopping business logic abuse, broken access control and trust failures in real time.

Wallarm recognizes that “abuse beats bugs.” With 97% of API vulnerabilities exploitable via a single request, 99% remotely exploitable, and 59% requiring no authentication, detection alone is insufficient. Wallarm is engineered to stop attacks, not just generate alerts.

Beyond product innovation, Wallarm has demonstrated strong growth and industry impact: 41% employee growth in 2025 to support global demand; launch of Wallarm University to close the API security skills gap; introduction of MCPJail, an open-source tool securing emerging AI agent ecosystems; and recognition through multiple industry awards for API security excellence.

By combining authoritative threat research, precision enforcement against API-specific threats like BOLA and broken access control, AI-aware security innovation and enterprise-scale deployment flexibility, Wallarm is redefining API security in the age of AI.