APIs: The "New" Security Attack Vector?