Security News > 2023 > June > Generative AI Tools Can Compromise Your SaaS Security - Here's How to Fight Back
A February 2023 generative AI survey of 1,000 executives revealed that 49% of respondents use ChatGPT now, and 30% plan to tap into the ubiquitous generative AI tool soon.
1 - Threat Actors Can Exploit Generative AI to Dupe SaaS Authentication Protocols #. As ambitious employees devise ways for AI tools to help them accomplish more with less too, do cybercriminals.
These insights are necessary not only for cybercriminals' generative AI activities but also for employees' AI tool connections to SaaS platforms.
2 - Employees Connect Unsanctioned AI Tools to SaaS Platforms Without Considering the Risks #. Employees are now relying on unsanctioned AI tools to make their jobs easier.
AI tools, like most SaaS apps, use OAuth access tokens for ongoing connections to SaaS platforms.
SSPM enables security teams and SaaS app owners to enforce best practices without studying the intricacies of each SaaS app and AI tool setting.
News URL
https://thehackernews.com/2023/06/how-generative-ai-can-dupe-saas.html
Related news
- In the rush to build AI apps, please, please don't leave security behind (source)
- Generative AI Security - Secure Your Business in a World Powered by LLMs (source)
- GitHub Launches AI-Powered Autofix Tool to Assist Devs in Patching Security Flaws (source)
- Scammers exploit tax season anxiety with AI tools (source)
- AI framework vulnerability is being used to compromise enterprise servers (CVE-2023-48022) (source)
- Enterprises increasingly block AI transactions over security concerns (source)
- Google Cloud/Cloud Security Alliance Report: IT and Security Pros Are ‘Cautiously Optimistic’ About AI (source)
- Six steps for security and compliance in AI-enabled low-code/no-code development (source)
- Security pros are cautiously optimistic about AI (source)
- GenAI: A New Headache for SaaS Security Teams (source)