#SalesforceSecurity

A SaaS Security Challenge: Getting Permissions All in One Place 

by

May 8, 2024 at 11:07AM SaaS platforms like Salesforce, Workday, and Microsoft 365 offer precise permissions, dictating user access to data. However, managing these permissions can be complex and challenging, leading to security vulnerabilities. A centralized Permissions Inventory enables organizations to reduce their attack surface, improve regulatory compliance, and streamline SaaS security, with future tools … Read more

Misconfigured Custom Salesforce Apps Expose Corporate Data

by

February 20, 2024 at 09:01AM A new security advisory cautions Salesforce users with customized instances to be wary of common programming errors and misconfigurations. The advisory emphasizes the vulnerability of the Apex programming language, citing instances where leaked data and vulnerable sites were identified. Recommendations include avoiding certain configurations and conducting thorough security assessments of … Read more