August 27, 2024 at 09:30AM SaaS deployments often lack central control and clarity, with responsibility for securing SaaS resting mostly on business owners/stakeholders rather than cybersecurity teams. Lack of visibility into SaaS platforms leads to security risks, as many organizations don’t know the full scope of their SaaS applications. AppOmni’s survey reveals a disconnect between … Read more
August 16, 2024 at 12:41PM Widespread misconfiguration in Oracle NetSuite’s SuiteCommerce ERP platform has exposed customer data on thousands of websites. The issue, uncovered by AppOmni, allows unauthorized access to sensitive data due to misconfigured access controls on custom record types. NetSuite urged customers to review their security settings, as SaaS security programs need more … Read more
August 16, 2024 at 07:40AM SaaS applications offer convenience and efficiency but come with security risks, making due diligence essential. AppOmni offers the Due Diligence Questionnaire (DDQ) and SaaS Event Maturity Matrix (EMM) to simplify the process and enhance security measures. These resources facilitate identifying and addressing security gaps, streamlining the due diligence process and … Read more
August 8, 2024 at 11:00AM AppOmni analyzed 230 billion SaaS audit log events, finding that most SaaS security incidents involve simple smash and grab incursions, with attackers using legitimate credentials for entry. The use of MITRE ATT&CK kill chain is minimal. AppOmni recommends implementing a full zero trust policy with effective MFA to prevent attacker … Read more