Application Programming Interface (API)-based systems are the emerging best practice for software development, with containerization, microservices, and cloud computing providing the catalyst for increasingly rapid and broad adoption. However, much like it took years for front-end developers to avoid common vulnerabilities such as cross site scripting, back-end developers do not generally understand the vulnerabilities associated with APIs. API security is an area with minimal cybersecurity workforce awareness. Cybersecurity professionals we need to understand APIs and their inherent potential vulnerabilities.