Security News > 2023 > November > When Email Security Meets SaaS Security: Uncovering Risky Auto-Forwarding Rules

Wing Security, a SaaS security company, announced yesterday that their SaaS shadow IT discovery methods now include a solution that solves for auto-email forwarding as well.

Bad actors can use these email forwarding rules to exfiltrate data after a successful attack, or as a means to spread phishing campaigns within organizations.

For several reasons, it is essential for organizations to uncover SaaS Shadow IT applications.

Security Risks: SaaS applications are part of the modern supply chain, and as such they should undergo proper vendor risk assessments and user access reviews prior to connecting them to company data.

Wing's SaaS discovery entails the systematic identification, categorization, and analysis of an organization's SaaS usage to mitigate shadow IT risks.

The company offers three distinct and non-intrusive discovery methods: Connecting to organizations' major SaaS applications to identify connected applications, scanning endpoints for SaaS signature hits and cross-checking them with Wing's extensive SaaS database of over 280,000 SaaS records.

News URL

https://thehackernews.com/2023/11/when-email-security-meets-saas-security.html