SaaS - Security Ticks

CDK Global cyberattack cripples 15,000 US auto dealerships

cyberattack, disruption, Don't miss, Hot stuff, News, Retail, SaaS, USA / SecurityTicks

CDK Global cyberattack cripples 15,000 US auto dealerships 2024-06-20 at 13:46 By Zeljka Zorz CDK Global, a software-as-a-service (SaaS) provider for car dealers and auto equipment manufacturers, has suffered a cyberattack that has temporarily disrupted its customers’ operations. About CDK and its platform CDK’s platform is used by 15,000+ car dealerships across North America to […]

React to this headline:

CDK Global cyberattack cripples 15,000 US auto dealerships Read More »

The rise of SaaS security teams

Artificial Intelligence, authentication, Cloud Security Alliance, cybersecurity, data breach, Don't miss, Features, Hot stuff, Incident Response, machine learning, News, opinion, SaaS, skill development, strategy / SecurityTicks

The rise of SaaS security teams 2024-06-17 at 07:31 By Mirko Zorz In this Help Net Security interview, Hillary Baron, Senior Technical Director for Research at CSA, highlights that the recent surge in organizations establishing dedicated SaaS security teams is driven by significant data breaches involving widely used platforms. What motivated the recent surge in

React to this headline:

The rise of SaaS security teams Read More »

97% of security leaders have increased SaaS security budgets

cybersecurity, News, report, SaaS, survey, Valence Security / SecurityTicks

97% of security leaders have increased SaaS security budgets 2024-05-03 at 06:31 By Help Net Security 58% of the organizations were affected by a SaaS security incident in the last 18 months, according to Valence Security’s 2024 State of SaaS Security Report. Likely, as a result, 96% security leaders have made SaaS security a top

React to this headline:

97% of security leaders have increased SaaS security budgets Read More »

Why are many businesses turning to third-party security partners?

access management, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, Privacy, professional, regulation, SaaS, SailPoint / SecurityTicks

Why are many businesses turning to third-party security partners? 2024-04-10 at 08:03 By Help Net Security In 2023, 71% of organizations across various industries reported that their business feels the impact of the ongoing cybersecurity skills shortage. Many companies have been forced to scale back their cybersecurity programs as they struggle to find experienced candidates

React to this headline:

Why are many businesses turning to third-party security partners? Read More »

Product showcase: How to track SaaS security best practices with Nudge Security

access management, News, Nudge Security, OAuth, Product showcase, SaaS, SSO / SecurityTicks

Product showcase: How to track SaaS security best practices with Nudge Security 2024-03-13 at 06:37 By Help Net Security As technology adoption has shifted to be employee-led, IT and security teams are contending with an ever-expanding SaaS attack surface. At the same time, they are often spread thin, meaning they need ways to quickly identify

React to this headline:

Product showcase: How to track SaaS security best practices with Nudge Security Read More »

How organizations can navigate identity security risks in 2024

access management, authentication, CISO, cloud security, cybersecurity, Don't miss, Features, Hot stuff, hybrid IT, identity management, News, opinion, SaaS, strategy, tips, Zilla Security / SecurityTicks

How organizations can navigate identity security risks in 2024 2024-02-29 at 07:34 By Mirko Zorz Managing IAM challenges in hybrid IT environments requires a holistic approach, integrating solutions and automating processes to ensure effective access controls and operational efficiency. In this Help Net Security interview, Deepak Taneja, CEO of Zilla Security, discusses identity security risks

React to this headline:

How organizations can navigate identity security risks in 2024 Read More »

Great security or great UX? Both, please

authentication, biometrics, cybersecurity, Don't miss, Expert analysis, Frontegg, Hot stuff, News, opinion, passwords, SaaS / SecurityTicks

Great security or great UX? Both, please 2024-01-30 at 08:02 By Help Net Security A new user is signing up for a SaaS application. On the one hand, UX teams want that user to get into the app as quickly as possible. On the other hand, security teams want the user to strongly validate their

React to this headline:

Great security or great UX? Both, please Read More »

3 ways to combat rising OAuth SaaS attacks

access control, Adaptive Shield, attacks, authentication, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, monitoring, News, OAuth, opinion, SaaS / SecurityTicks

3 ways to combat rising OAuth SaaS attacks 2024-01-16 at 07:31 By Help Net Security OAuth attacks are on the rise. In December, the Microsoft Threat Intelligence team observed threat actors misusing OAuth apps to take over a cloud server and mine cryptocurrency, establish persistence following business email compromise and launch spam activity using the

React to this headline:

3 ways to combat rising OAuth SaaS attacks Read More »

5 pivotal cybersecurity trends for 2024

Artificial Intelligence, automation, cyberattacks, cybercriminals, cybersecurity, Don't miss, Expert analysis, Expert corner, generative AI, Hot stuff, News, opinion, Perception Point, SaaS / SecurityTicks

5 pivotal cybersecurity trends for 2024 2023-12-28 at 07:01 By Help Net Security In 2023, cyberattacks surged both in terms of frequency and sophistication. The proliferation of cutting-edge hacking tools and technologies – now more accessible than ever thanks to advances in generative AI – created an environment conducive for cyber threats to flourish, forcing

React to this headline:

5 pivotal cybersecurity trends for 2024 Read More »

Generative AI is shaping future incident management processes

automation, cybersecurity, generative AI, Incident Response, News, report, SaaS, survey, Transposit / SecurityTicks

Generative AI is shaping future incident management processes 15/11/2023 at 08:03 By Help Net Security Persistent challenges in adhering to established incident management processes pose a significant risk to organizations, amplifying potential downtime costs amidst a surge in service incidents, according to Transposit. Despite a majority of respondents (59.4%) who have a defined incident management

React to this headline:

Generative AI is shaping future incident management processes Read More »

Product showcase: Nudge Security’s SaaS security and governance platform

cybersecurity, Don't miss, News, Nudge Security, Product showcase, SaaS / SecurityTicks

Product showcase: Nudge Security’s SaaS security and governance platform 15/11/2023 at 07:01 By Help Net Security In today’s highly distributed workplace, every employee has the ability to act as their own CIO, adopting new cloud and SaaS technologies whenever and wherever they need. While this has been a critical boon to productivity and innovation in

React to this headline:

Product showcase: Nudge Security’s SaaS security and governance platform Read More »

AI threat landscape: Model theft and inference attacks emerge as top concerns

Artificial Intelligence, CISO, collaboration, cybersecurity, data, Don't miss, Features, generative AI, guidelines, Hot stuff, News, opinion, policy, regulation, risk, SaaS, Savvy / SecurityTicks

AI threat landscape: Model theft and inference attacks emerge as top concerns 30/10/2023 at 08:31 By Mirko Zorz Generative AI has emerged as a powerful tool, heralded for its potential but also scrutinized for its implications. Enterprises will invest nearly $16 billion worldwide on GenAI solutions in 2023, according to IDC. In this Help Net

React to this headline:

AI threat landscape: Model theft and inference attacks emerge as top concerns Read More »

DIY attack surface management: Simple, cost-effective and actionable perimeter insights

Cloud, cybersecurity, DNS, Don't miss, Expert analysis, Expert corner, exploit, GitHub, Hot stuff, misconfiguration, News, open source, opinion, SaaS, vulnerability, web application, WithSecure / SecurityTicks

DIY attack surface management: Simple, cost-effective and actionable perimeter insights 16/10/2023 at 11:46 By Help Net Security Modern-day attack surface management (ASM) can be an intimidating task for most organizations, with assets constantly changing due to new deployments, assets being decommissioned, and ongoing migrations to cloud providers. Assets can be created and forgotten about, only

React to this headline:

DIY attack surface management: Simple, cost-effective and actionable perimeter insights Read More »

Factors leading to organizations losing control over IT and security environments

Cloud, Cloudflare, Compliance, cybersecurity, data, digital transformation, hybrid workforce, News, report, SaaS / SecurityTicks

Factors leading to organizations losing control over IT and security environments 04/10/2023 at 06:02 By Help Net Security Companies are challenged with the growing need to connect everything in their business while maintaining control over their security, productivity, and competitive growth, according to Cloudflare. “Today, the big clouds have built business models on capturing your

React to this headline:

Factors leading to organizations losing control over IT and security environments Read More »

The blueprint for a highly effective EASM solution

Compliance, cybersecurity, Don't miss, Features, framework, Hot stuff, misconfiguration, monitoring, News, opinion, remediation, SaaS, shadow IT, SIEM, Threat Intelligence, Uncovery, vulnerability / SecurityTicks

The blueprint for a highly effective EASM solution 11/09/2023 at 08:04 By Mirko Zorz In this Help Net Security interview, Adrien Petit, CEO at Uncovery, discusses the benefits that organizations can derive from implementing external attack surface management (EASM) solutions, the essential capabilities an EASM solution should possess, and how it deals with uncovering hidden

React to this headline:

The blueprint for a highly effective EASM solution Read More »

IT leaders alarmed by generative AI’s SaaS security implications

Artificial Intelligence, CIO, cybersecurity, generative AI, News, Privacy, regulation, report, SaaS, Snow Software / SecurityTicks

IT leaders alarmed by generative AI’s SaaS security implications 29/08/2023 at 06:03 By Help Net Security IT leaders are grappling with anxiety over the risks of generative AI despite continued confidence in their software-as-a-service (SaaS) security posture, according to Snow Software. 96% of respondents indicated they were still ‘confident or very confident’ in their organization’s

React to this headline:

IT leaders alarmed by generative AI’s SaaS security implications Read More »

53% of SaaS licenses remain unused

CIO, News, Productiv, report, SaaS, shadow IT, software, survey / SecurityTicks

53% of SaaS licenses remain unused 04/07/2023 at 06:38 By Help Net Security Enterprise leaders in procurement, IT, and finance need to take immediate action to rationalize their SaaS portfolios to prevent spending and governance challenges from spiraling out of control, according to Productiv. Productiv analyzed how nearly 100 million SaaS licenses were used over

React to this headline:

53% of SaaS licenses remain unused Read More »

Malicious Tools in the Underground: Investigating their Propagation

AES, apple, Atomic, Binance, C, Chrome, Chromium, Coinbase, Coinomi, Cryptocurrency, darkweb, DDoS, Delphi, DMG, Exodus, Keplr, Keylogging, Linux, LummaC2 Stealer, MaaS, macOS, Malware, Martian, Meduza, MetaMask, Mozilla, Phantom, PKG, RaaS, RSA, Russian, SaaS, ShadowVault, Telegram, Threat Intelligence, Trigona, Tron Link, Trust, Windows / SecurityTicks

Malicious Tools in the Underground: Investigating their Propagation 16/06/2023 at 19:04 By cybleinc Cyble Research & Intelligence Labs investigates the recent promulgation of Malicious Tools in underground forums. The post Malicious Tools in the Underground: Investigating their Propagation appeared first on Cyble. This article is an excerpt from Cyble View Original Source React to this

React to this headline:

Malicious Tools in the Underground: Investigating their Propagation Read More »

SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint

Microsoft, Ransomware, SaaS / SecurityTicks

SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint 09/06/2023 at 15:46 By Kevin Townsend A SaaS ransomware attack against a company’s Sharepoint Online was done without using a compromised endpoint. The post SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint appeared first on SecurityWeek. This article is an excerpt

React to this headline:

SaaS Ransomware Attack Hit Sharepoint Online Without Using a Compromised Endpoint Read More »

0mega ransomware gang changes tactics

account hijacking, data theft, Don't miss, extortion, Hot stuff, News, Obsidian Security, Ransomware, SaaS / SecurityTicks

0mega ransomware gang changes tactics 07/06/2023 at 17:37 By Zeljka Zorz A number of ransomware gangs have stopped using malware to encrypt targets’ files and have switched to a data theft/extortion approach to get paid; 0mega – a low-profile and seemingly not very active threat actor – seems to be among them. About the 0mega

React to this headline:

0mega ransomware gang changes tactics Read More »