Name: API Security 基礎編 モバイルオーダー不正からデータ漏洩まで─API攻撃の最新手口と防御の具体策
Start: 2026-03-17T03:00:00Z
End: 2026-03-17T03:00:50.000Z
Location: BrightTALK

Akamai is the cybersecurity and cloud computing company that powers and protects business online. Our market-leading security solutions, superior threat intelligence, and global operations team provide defense in depth to safeguard enterprise data and applications everywhere. Akamai’s full-stack cloud computing solutions deliver performance and affordability on the world’s most distributed platform. Global enterprises trust Akamai to provide the industry-leading reliability, scale, and expertise they need to grow their business with confidence. Learn more at akamai.com and akamai.com/blog, or follow Akamai Technologies on X and LinkedIn.

LLM(大規模学習モデル)ベースの生成AIを利用し、自然な対話処理による顧客向け、また、業務支援のアプリケーションが普及しようとしています。その一方で、LLM の性質を悪用した全く新しい攻撃手法やブランド毀損のリスクが高まっています。
本講演では、まず初めにLLM特有のセキュリティリスクが起きるしくみと概要を解説します。そして、LLMを用いたチャットボットアプリケーションのリスクを軽減する「*ガードレール」と呼ばれる対策を提供する Akamai の最新ソリューション『Firewall for AI』の機能と特徴について、製品デモを交えてご紹介します。

*ガードレール...AIの利用において想定外の動作やリスクを防ぐための仕組みや制御手段

生成AIセキュリティウェビナー　生成AI特有の新たなセキュリティ・ビジネスリスクに備えるには？

近年、企業が提供するアプリケーションやサービスの多くがAPIを通じてデータをやり取りするようになり、APIはビジネスの中核を担う存在となっています。
しかしその一方で、APIを狙った攻撃は年々増加しており、情報漏えい、不正アクセス、サービス停止といった深刻な被害を引き起こすケースも後を絶ちません。

本ウェビナーでは、「なぜAPIが攻撃の標的になるのか」、「どのようなリスクが潜んでいるのか」を具体的な事例とともに解説し、AkamaiのAPI Securityソリューションがどのように可視化・防御・運用を支援するかをご紹介します。
デモンストレーションを交えながら、Akamaiならではの包括的なセキュリティアプローチをわかりやすくお伝えします。

このような方におすすめ
・自社のAPIがどのようなリスクに晒されているかを理解したい方
・APIの脆弱性対策を検討しているセキュリティ担当者・アーキテクト
・APIを活用した新規サービスを推進する開発・運用チーム
・セキュリティ戦略の見直しを検討しているマネージャー・リーダー層

APIセキュリティ入門：リスクの全体像とAkamaiの防御アプローチを学ぶ

本セッションでは、Akamai Guardicore Segmentation(AGS)とHuntの組み合わせによる、ネットワーク型検知アプローチにより実現できる脅威ハンティングについてご紹介します。Huntでは、AGS導入後間もないお客様環境であっても、攻撃活動の検知が可能です。セッション後半では、Huntによる攻撃活動の検知からAGSを活用した対処までの事例も併せてご紹介します。

【こんな課題をお持ちの方におすすめ】

内部セグメンテーションの制御ポリシーへの能動的改善手法を知りたい
潜伏型・環境内寄生型攻撃（Living Off the Land)への対策を検討したい
脅威ハンティングにおけるEDR派生のサービス、マイクロセグメンテーション派生のサービスの違いを整理したい

事例ウェビナー　脅威ハンティングによる攻撃活動の検知とAGSによる対処

サイバー攻撃の高度化に伴い、マイクロセグメンテーションは導入後の“継続的な最適化”が不可欠です。本ウェビナーでは、過剰許可や未使用パスの見直しを含むポリシー最適化と、管理系通信やリモートアクセスの制御など強化すべき領域を、7つのユースケースを通じて具体的に解説します。攻撃者に横移動の隙を与えないための運用改善手法を学び、ゼロトラスト実現への実践的ステップを理解いただけます。

潜伏型サイバー攻撃に備える：セグメンテーション運用を“継続的に強くする”方法

本ウェビナーでは、ゼロトラスト・セキュリティの次の一手、そしてランサムウェア対策として急速に広がりを見せている内部セグメンテーション強化施策における導入ステップと、頻繁に活用されているセグメンテーション手法をご紹介します。

ゼロトラスト型セグメンテーション導入のベストプラクティスと国内事例

ランサムウェアは高度化し、攻撃者は“RaaS（ランサムウェアアズアサービス）”を軸に分業化されたビジネスモデルで活動しています。本ウェビナーでは、日系企業の被害事例を交えながら、現在の脅威状況と攻撃手法を解説し、EDRだけでは防ぎ切れない理由を明らかにします。さらに、マイクロセグメンテーションによって侵入後の横移動を防ぎ、被害拡大を抑える実践的な防御アプローチを紹介します。

ランサムウェア対策基礎編：EDRだけでは守り切れないランサムウェア被害を最小化する二段構えの防御アプローチ

A significant rise in API attacks and disruptions to cloud services in 2025 challenged the fundamental resilience of even the most modern organizations. With the continued explosive growth of AI, what lies ahead? 

Join us as we delve into real-world scenarios, share insights from executives, and shed light on the future and convergence of edge computing, security, and AI. Leave with actionable strategies to bolster your security posture in 2026, optimize your investments, and maintain agility and adaptability in the face of rapidly evolving challenges.

Beyond Outages: AI, API Security, and Resilience Strategies for 2026

In the final episode of our three-part series, experience TrafficPeak's powerful real-time observability platform in action with product demos. Watch how you can leverage real-time insights to optimize your content delivery and enhance viewer engagement.

 During this interactive session, you'll discover how to: 

-Gain Instant Visibility: Explore TrafficPeak's intuitive dashboard to monitor key metrics such as latency, buffering rates, and content popularity in real-time. 
-Proactively Resolve Issues: Learn how TrafficPeak identifies performance bottlenecks, empowering you to troubleshoot problems before they impact your audience. 
-Maximize Content Impact: See how actionable insights can help you fine-tune content promotion strategies and improve user retention. 
-Simplify Operations: Discover automation capabilities that streamline caching decisions and improve overall delivery efficiency. 

Whether you're looking to improve streaming performance, drive engagement, or enhance your observability strategy, let this demo show you the power of TrafficPeak's capabilities.

Don't miss this opportunity to see TrafficPeak in action and innovate your streaming experience.

Ep. 3 - Experience Real-Time Observability: Join us for a Demo

In the second episode of our three-part series, we take a deep dive into real-world customer experiences with TrafficPeak’s edge observability. Join us for an exclusive subject matter expert fireside chat where we’ll explore how businesses across media streaming, e-commerce, and finance have successfully implemented cost-effective observability to overcome challenges and enhance performance.

You’ll be able to gain valuable insights into:


-Customer Success Stories – Learn how businesses are improving performance, reliability, and user engagement with real-time observability.
-Practical Applications – Understand how observability strategies can be tailored to optimize as per your needs
-Overcoming Industry Challenges – Discover how our customers tackle scalability, latency, security, and compliance hurdles.
-Impact of Cost-effective Solutions - See how affordable observability drives results without breaking the bank

Don’t miss this insightful discussion that bridges the gap between insights and real-world applications, highlighting impactful results.
 Stay tuned for our final episode, which will feature a live product demo showcasing the power of Trafficpeak’s observability platform.

Ep. 2 - Cost-effective Edge Observability in action: Customer Success Insights

In today's fast-paced digital landscape, real-time observability is crucial for delivering seamless experiences, ensuring system reliability, and optimizing performance across industries like media streaming, e-commerce, and finance. TrafficPeak on Akamai Cloud provides instant insights that drive smarter decisions and better outcomes.

Join us to discover how TrafficPeak on Akamai Cloud can help you:


-Real-Time Insights for Smarter Decisions –Instantly monitor user behavior, system performance, and content delivery to optimize operations.
-Enhance Performance & Reliability – Predict traffic surges, balance workloads, and resolve issues before they impact users.
-Optimize Costs & Resource Allocation – Streamline caching, network routing, and cloud spend to maximize efficiency.
-Improve Security & Compliance – Detect anomalies, mitigate threats, and meet industry-specific compliance requirements.
-Stay Ahead with Best Practices – Explore the latest trends in observability and learn how industry leaders are leveraging TrafficPeak.

This is the first episode of a three-part series—stay tuned for upcoming sessions featuring real-world customer case studies and a live product demo in the final episode.

Ep. 1 - Cost-effective Edge Observability with TrafficPeak

Generative AI reshapes API security, posing new threats and solutions. In this session, we will explore how malicious actors could leverage generative AI to exploit API vulnerabilities. And outline how Akamai integrates cutting-edge AI technologies to defend against these threats.

In this practical session, you will learn:

1. How generative AI is being used by attackers to discover vulnerabilities, and automate API exploitation

2. How Akamai API Security employs advanced AI models to identify suspicious patterns and predict threats in real time

3. Real-world examples of how generative AI is used in Akamai API Security to strengthen defenses

This presentation is ideal for security professionals, developers, and business leaders looking to stay ahead in the ever-changing landscape of API security.

Generative AI and API Security: Staying Ahead with Akamai API Security

APIs are integral to modern applications including AI's operational and functional aspects. Vulnerabilities and misconfigurations in APIs can lead to severe consequences like data breaches, fines, and reputational damage.

Join our live API Security demo to discover how to:

-Gain complete visibility into your APIs, and the data they handle
-Instantly create an API inventory to meet regulatory compliance requirements
-Leverage AI and machine learning to analyze API transactions and detect posture and business logic vulnerabilities
-Automate workflows for alerts, ticketing, event logs, remediation guidance, and attacker blocking
-Reduce risks early with Shift-Left API testing during the development phase

This presentation is ideal for security professionals, developers, and business leaders looking to stay ahead in the ever-changing landscape of API security.

AI-Powered API Security in Action

APIs have long been the important connective tissue that enables modern applications to function, interact, and scale effectively.

In the age of AI, APIs serve as the critical infrastructure that enables seamless communication between AI systems and other applications, facilitating real-time interactions between applications, data sources, and services.

However, as APIs become more integral to AI's operational and functional aspects, they also present a growing attack surface for cyber threats. 

In this session, you will learn:

 1. The Role of APIs in AI and Agentic Systems
 2. How compromised APIs can disrupt AI systems and expose sensitive data
 3. Top security risks affecting APIs and their impact
 4. Mitigating API risks with best practices and AI-powered tools
 5. Key takeaways and next steps

This presentation is ideal for security professionals, developers, and business leaders looking to stay ahead in the ever-changing landscape of API security.

API security in the age of AI

Zero Trust isn’t just about security—it’s a critical pillar of cyber resilience. But how do you measure its impact? In this final episode of our cyber resilience webinar series, we’ll break down the real ROI of implementing Zero Trust and how Akamai Guardicore Segmentation helps you maximize security while minimizing costs.

Join us as we explore:

-How to reduce attack surfaces and simplify compliance, and enhance operational security
-How granular segmentation prevents lateral movement and minimizes business disruptions
-Real-world use cases and key metrics to quantify the financial and security benefits

Whether you’re starting or fine-tuning your security strategy, this session will equip you with insights to measure success, reduce risks, and enhance cyber resilience. Don’t miss this opportunity to take that final step in your Zero Trust journey!

Ensure Cyber Resilience: Maximizing ROI on Your Zero Trust Journey with Akamai

Achieving a solid network segmentation policy is only the beginning. In today’s dynamic threat landscape, even the most well-architected segmentation policies require continuous tuning and vigilance after deployment. This session dives deep into the evolving world of Day-2 network security — where static rules become liabilities, and policy maintenance is a continuous battle against misconfigurations, overly permissive access, and silent policy failures.

Join us to explore 7 critical real-world scenarios that expose hidden gaps in segmentation strategies — from overshadowed and zero-hit rules to unrestricted admin access and rogue remote tools. Learn how attackers exploit these weaknesses and how security teams can shift from a “set it and forget it” mindset to a proactive, adaptive approach.

We’ll cover actionable techniques to:
- Detect and eliminate overly broad or obsolete rules
- Enforce least-privilege communication at scale
- Use automation and traffic intelligence to continuously optimize your policy
- Bring hidden attack paths to light — before adversaries do

Akamai is an approved ISC2 CPE Submitter Partner. Earn CPE Credits by watching our Webinar.

Making Cyber Resilience Work for Critical Infrastructure

Modern cyber threats are more sophisticated than ever, bypassing even the most advanced security defenses. Akamai HUNT takes security to the next level by leveraging real-time segmentation data, third-party integrations, and cutting-edge telemetry to uncover and neutralize hidden threats before they cause damage. With no additional agent rollout required, organizations can seamlessly enhance their security posture while avoiding alert fatigue and unnecessary operational burdens.

In this webinar, we’ll walk you through the power of Akamai HUNT, real-world success stories, and a live product demo showcasing how security teams can detect and respond to advanced threats in real time.

What You’ll Learn:
- Understanding Akamai HUNT – How it enhances Guardicore segmentation and integrates with OSquery for deep visibility.
- Real-World Threat Hunting Scenarios – Case studies showcasing how Akamai HUNT identified crypto-mining malware, admin credential leaks, and PowerShell abuse.
- Advanced Threat Detection & Incident Response – How Hunt’s detection engine minimizes false positives and prioritizes the most critical threats.
- Live Demo – See how Hunt visualizes threats, maps attack paths, and provides actionable remediation steps.
- Security Best Practices & Future Innovations – Insights into upcoming enhancements to segmentation rules and proactive threat prevention.

Hunting the Most Evasive Cyber Threats With Akamai HUNT

It has been established that microsegmentation is a fast-growing essential business building block - from gaining visibility into your applications and workloads, developing your security posture, and enabling Zero Trust - microsegmentation represents exciting advancements for operational security.

But there are many approaches organizations have at their disposal, and understanding the tools and solutions that suit your business needs and requirements is essential for longevity and success.

In this session, we’ll be reviewing the solutions and tools available today, the mistakes to avoid, and how to set your business up for success.

Join Akamai and Enterprise Strategy Group Analysts as we discuss:

- Considerations before assessing Microsegmentation vendors
- Where historical microsegmentation tools have fallen short in the past, and the tools available today
- How you can gain visibility into your network using Microsegmentation
- AI and machine learning in the microsegmentation space
- And more!

API  Security 基礎編　モバイルオーダー不正からデータ漏洩まで─API攻撃の最新手口と防御の具体策

API Security

Cloud computing has exploded over the past few years, delivering a previously unimagined level of workplace mobility and flexibility. The cloud computing community on BrightTALK is made up of thousands of engaged professionals learning from the latest cloud computing research and resources. Join the community to expand your cloud computing knowledge and have your questions answered in live sessions with industry experts and vendor representatives.

Cloud Computing

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

IT Security

Network infrastructure professionals understand that a reliable and secure infrastructure is crucial to enabling business execution. Join the network infrastructure community to interact with thousands of IT professionals. Browse hundreds of on-demand and live webinars and videos to learn about the latest trends in network computing, SDN, WAN optimization and more.

Network Infrastructure

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

API Security 基礎編　モバイルオーダー不正からデータ漏洩まで─API攻撃の最新手口と防御の具体策

Presented by

About this talk

Akamai APAC

API Security 基礎編 モバイルオーダー不正からデータ漏洩まで─API攻撃の最新手口と防御の具体策

Presented by

About this talk

Akamai APAC

API Security 基礎編　モバイルオーダー不正からデータ漏洩まで─API攻撃の最新手口と防御の具体策