Security News

A new guide from XDR and SSPM provider Cynet, titled The Guide for Reducing SaaS Applications Risk for Lean IT Security Teams, breaks down exactly why SaaS ecosystems are so risky, and how security teams can mitigate those dangers. The risk of a digital disaster is impossible to ignore - especially given the security paradigms that govern most SaaS applications.

A BetterCloud survey of more than 500 IT and security professionals reveals the latest challenges of managing SaaS at scale, particularly as digital transformation catapulted forward in 2021 - and IT kept the momentum going. SaaS security is top of mind for IT. 69 percent of respondents worry about unsanctioned SaaS apps.

These are categorized into four according to their type of security issues, namely virtualization level, application level, network level, and physical level security issues. One security firm released a report in February this year, revealing that 91 percent of companies experienced API security problems while over 80 percent were uncertain if their APIs were compromised.

Enterprises worldwide continue to migrate from proprietary, licensed software to software-as-a-service subscriptions as they seek innovation, better user experience and lower cost, according to a report published by Information Services Group. The report on the global market finds enterprise SaaS demand rebounding from a slowdown caused by the COVID-19 crisis.

Business investment in SaaS applications continues to climb despite widespread underutilization of app licenses by employees. The data also shows 56% of all apps are Shadow IT, or owned and managed outside of IT. The SaaS market has been growing ever since Amazon built the first public cloud and is projected by Gartner to be nearly $140B by 2022.

Based on customer data, the findings clearly illustrate there is a magnitude of SaaS data exposure, with 40% of all SaaS assets unmanaged, providing internal, external and public data access. Although cloud-based applications dramatically increase the efficiency and productivity throughout an enterprise, there is a significant threat that is often underestimated by CIOs and CISOs - unchecked and unmanaged data access by the SaaS provider.

Intrigue's attack surface management technology will be integrated into the Mandiant Advantage platform, enabling organizations to discover, monitor, and manage risk across their entire attack surface. By offering Intrigue's technology through the Mandiant Advantage platform, customers will be able to address critical gaps in their security programs by leveraging the latest attack surface management capabilities in an easy-to-use software-as-a-service platform.

Today, most companies rely on manual processes and good intentions to ensure proper SaaS security management, but that is not enough. The AppOmni SaaS Security Management platform, which offers a full suite of SaaS security posture, protection, and monitoring capabilities, covers the most widely adopted and business-critical SaaS applications on the market including Salesforce, ServiceNow, Microsoft 365, Microsoft Teams, GitHub, Workday, Box, Slack, and Zoom.

DSM SaaS provides the complete proven capabilities of the Fortanix on-premises solution and is the multicloud data security solution certified to the rigorous FIPS 140-2 Level 3 standard. Available immediately on demand, DSM SaaS is a path for organizations to achieve the highest levels of data security for public cloud, SaaS, hybrid cloud, and on-premises applications.

BehavioSec announced that it has extended its patented technology and BehavioSense platform into a SOC/ISO compliant, hosted-version and a cloud-native, SaaS version. These new versions will help more organizations meet compliance and cloud mandates, support frictionless multi-factor authentication, and gain access to the advanced behavioral biometrics technology - which until now - has only been employed within the world's largest banks, e-Identity providers, and online retailers.