A new survey explains why nearly all organizations experience API security problems to varying degrees.