Gartner mentions by 2022, API will be the biggest attack vectors. The target of these attacks is Application’s Business Logic. Current generation products-built decades ago like WAF, NGFW, Zero-Trust, RASP and SAST/DAST etc, cannot fight against the new generation of threats as is evident with the news of API breaches reported on a regular basis. Application Security must evolve with the changing Application architectures. Organization MUST include API security in their posture.