API risk dashboard

Updated: October 30, 2025

Dashboard Getting Started

The API Risk Dashboard provides a comprehensive, real-time overview of your organization’s API risk status. It consolidates risk data across all APIs and calculates an overall risk score based on the highest-risk API in the organization. The dashboard highlights:

  • The top 5 APIs with the highest risk.
  • Traffic sources from high-risk countries.
  • Trends in suspicious and malicious activity over a selected time period.

Navigation

To access the API Risk Dashboard:

  1. In the side menu, go to Dashboards.

  2. Choose API Risk from the available dashboard views.

  3. The API Risk Dashboard opens with two main sections:

    • Risk summary (total score and top APIs by risk).
    • Risk sources (suspicious/malicious traffic and high-risk countries).

Risk summary

Risk total score

The risk score is categorized by severity:

  • Critical: 80-100
  • High: 60-80
  • Medium: 40-60
  • Low: Below 40

Learn about how individual APIs are assigned a risk score here.

Top APIs by risk score

The table displays the top 5 APIs with the highest individual risk scores, highlighting the most vulnerable APIs. For each API, details are provided on:

  • Detected PII (Personally Identifiable Information): The amount of sensitive data identified within the API, indicating exposure risk.
  • Findings: Shows the count of security findings associated with the API.
  • Requests: Provides the volume of requests processed, helping indicate traffic and potential points of interaction.
  • Endpoints: Lists the number of endpoints, illustrating the API's exposure and complexity.

Risk sources

The Risk sources section helps you identify trends and regions contributing to risk.

  • Suspicious and malicious traffic: A time-series graph of malicious and suspicious traffic, with hover details for specific intervals.
    • Use the filter to view suspicious or malicious traffic separately.
Your image
  • Traffic map:
    • A world map showing API traffic from high-risk countries.
    • The number of API requests per high-risk country is displayed below the map, giving detailed visibility into regional traffic.

Need help?

Contact FireTail support