SaaS – WindowsTechs.com

Cross-IdP impersonation bypasses SSO protections

Posted on November 19, 2024 by Help Net Security

Cross-IdP impersonation – a technique that enables attackers to hijack the single sign-on (SSO) process to gain unauthorized access to downstream software-as-a-service (SaaS) applications without compromising a company’s primary identity pr… Continue reading Cross-IdP impersonation bypasses SSO protections→

Why companies are struggling to keep up with SaaS data protection

Posted on October 17, 2024 by Help Net Security

While businesses increasingly rely on SaaS tools, many leaders are not fully confident in their ability to safeguard their data, according to Keepit. Growing concerns over SaaS data protection According to the survey, while 28% of respondents expressed… Continue reading Why companies are struggling to keep up with SaaS data protection→

The case for enterprise exposure management

Posted on October 7, 2024 by Help Net Security

For several years, external attack surface management (EASM) has been an important focus for many security organizations and the vendors that serve them. EASM, attempting to discover the full extent of an organization’s external attack surface and reme… Continue reading The case for enterprise exposure management→

Misconfigured ServiceNow Knowledge Bases Expose Confidential Information

Posted on September 17, 2024 by Fiona Jackson

AppOmni researchers found over a thousand instances of misconfigured Knowledge Bases where articles could be compromised through Public Widgets. Continue reading Misconfigured ServiceNow Knowledge Bases Expose Confidential Information→

Human firewalls are essential to keeping SaaS environments safe

Posted on September 6, 2024 by Help Net Security

Businesses run on SaaS solutions: nearly every business function relies on multiple cloud-based tech platforms and collaborative work tools like Slack, Google Workspace apps, Jira, Zendesk and others. We recently surveyed security leaders and CISOs on … Continue reading Human firewalls are essential to keeping SaaS environments safe→

A third of organizations suffered a SaaS data breach this year

Posted on September 3, 2024 by Help Net Security

While SaaS security is finally getting the attention it deserves, there’s still a significant gap between intent and implementation. Ad hoc strategies and other practices still fall short of a security program. The move toward decentralization has gene… Continue reading A third of organizations suffered a SaaS data breach this year→

When Convenience Costs: CISOs Struggle With SaaS Security Oversight

Posted on August 27, 2024 by Kevin Townsend

SaaS applications are so easy to use, the decision, and the deployment, is sometimes undertaken by the business unit user with little reference to, nor oversight from, the security team.
The post When Convenience Costs: CISOs Struggle With SaaS Securit… Continue reading When Convenience Costs: CISOs Struggle With SaaS Security Oversight→

Nearly 1/3 of Companies Suffered a SaaS Data Breach in Last Year

Posted on August 27, 2024 by Fiona Jackson

The finding is linked to a lack of visibility of the business’s app estate and decentralised security governance. Continue reading Nearly 1/3 of Companies Suffered a SaaS Data Breach in Last Year→

Nearly 1/3 of Companies Suffered a SaaS Data Breach in Last Year

Posted on August 27, 2024 by Fiona Jackson

More than 3 in 4 Tech Leaders Worry About SaaS Security Threats, New Survey Reveals

Posted on August 21, 2024 by Esther Shein

The average enterprise uses 130 different SaaS applications today, up from 80 in 2020, according to Onymos. Continue reading More than 3 in 4 Tech Leaders Worry About SaaS Security Threats, New Survey Reveals→