Indian enterprises face rise in identity and API-led cyberattacks; continuous validation cuts risk by 76%: Infopercept study

Indian enterprises are increasingly being targeted by stealthier cyberattacks that exploit identities, APIs and cloud misconfigurations rather than traditional malware, according to a new cybersecurity study released by Infopercept.

The findings are based on anonymised data from 100 enterprise customers in India using Invinsense, a consolidated cybersecurity platform developed by Infopercept, a global platform-led managed security services company. The study analyses cyberattacks detected over the past 12 months and correlates them with exposure reduction achieved through Continuous Threat Exposure Management (CTEM).

Organisations that adopted continuous validation reduced exploitable cyber exposures by an average of 76% within three CTEM cycles, typically completed within a year.

Shift towards ‘silent’ attacks

Across key sectors such as fintech, banking and financial services (BFSI), SEBI-regulated entities, healthcare and manufacturing, attackers showed a clear move away from disruptive, high-noise attacks towards more subtle methods.

The most common attack patterns observed included:

– Account takeover ...