SaaS Archives - Page 2 of 4 - Cyber Security Minute

Credential Sharing as a Service: The Hidden Risk of Low-Code/No-Code

Issued by: Dark Reading

According to the “2022 Verizon Data Breach Investigations Report,” stolen credentials were the top path leading to data breaches. More often than phishing or exploiting vulnerabilities, attackers gain direct access to credentials, letting them virtually walk into victim organizations using the front door. Low-code/no-code platforms make it extremely easy for users to share their credentials…

Cloud Security

devOcean Emerges From Stealth With Cloud-Native Security Operations Platform

Issued by: Security Week

The Israel-based startup was founded in 2021 by former CyberArk GMs of security research and innovation, Doron Naim and Gil Makmel, who now serve as CEO and CTO, respectively. At the moment, the company has 15 employees. devOcean says its Security-as-a-Service (SaaS) platform collects insights from all cloud and security tools to provide information on…

Why SOC 2 Compliance Is a Matter of (Zero) Trust

Issued by: CyberArk Blog

SaaS solutions are now so entwined in business users’ daily routines that they seem to meld into one experience — or simply put, “the way I work.” Yet the reality is there are many disparate cloud applications in play across a typical enterprise — 364 on average – which means a lot of complexity and…

Software Security

Thoma Bravo acquires SaaS company Anaplan for $10.7B

Issued by: CIO Security

Business planning SaaS (software-as-a-service) software maker Anaplan is being acquired by private equity firm Thoma Bravo for $10.7 billion. Founded in the UK and now based in San Francisco, Anaplan offers cloud-based finance and planning software and counts almost 2,000 customers worldwide, including Coca-Cola, Shell, Thomas Cook and VMware. The company went public in 2018,…

Application Security

HelpSystems to Acquire MDR Services Firm Alert Logic

Issued by: Security Week

Terms of the agreement were not disclosed The company’s MDR solution augments customers’ existing cybersecurity resources to protect on-premise, cloud, SaaS, and hybrid environments, and meet regulatory requirements, including PCI DSS, HIPAA HITECH, GDPR, Sarbanes-Oxley (SOX), SOC 2, NIST 800-171 and 800-53, ISO 27001, COBIT, and more. Houston, Texas-based Alert Logic, which claims more than…

Application Security

When Multifactor Authentication Is Compromised: Fighting Back With AI

Issued by: Dark Reading

Multifactor authentication (MFA) became mainstream in 2021. Google began pushing to make MFA its default for all users. The Biden administration even required all federal agencies and contractors to implement MFA in its Executive Order on Improving the Nation’s Cybersecurity. MFA adds in extra layers of verifying a user’s identity so that attackers cannot compromise…

Software Security

Product showcase: Adaptive Shield SaaS Security Posture Management

Issued by: Help Net Security

Whether it’s Office 365, Salesforce, Slack, GitHub or Zoom, all SaaS apps include a host of security features designed to protect the business and its data. The job of ensuring that these apps’ security settings are properly configured falls on the security team. The challenge lies within how burdensome this responsibility is: 1. Each app…

Software Security

How Sun Tzu’s Wisdom Can Rewrite the Rules of Cybersecurity

Issued by: Dark Reading

These millennia-old words of ancient Chinese military strategist Sun Tzu — to whom The Art of War is attributed — are still very relevant today. The best defense is to avoid an attack in the first place. With the right architecture and approach, it’s possible to shield your environment from the cybersecurity arms race so…

Network Security

Network Security Company Netography Raises $45 Million

Issued by: Security Week

The new investment round was led by Bessemer Venture Partners and SYN Ventures. Existing investors Andreessen Horowitz, Harpoon Ventures, Mango Capital, and Wing Venture Capital also contributed. The network security firm says it will use the capital for the development of new technology and for channel expansion. The company says it also plans to invest…

Vulnerabilities

Researcher Describes Potential Impact of Recently Patched SonicWall NSM Flaw

Issued by: Security Week

NSM is a firewall management application that provides the ability to monitor and manage all network security services from a single interface, as well as to automate tasks to improve security operations. The product is available for on-premises deployments or as a SaaS offering. Tracked as CVE-2021-20026 and featuring a CVSS score of 8.8, the…