Software-as-a-service (SaaS) platforms are wonderful for boosting employee productivity and collaboration. Apps like Slack, Microsoft Teams and Google Workspace are essentially a prerequisite in the modern workplace, facilitating remote and hybrid work setups, while empowering employees to enhance efficiency. However, while executives and employees love SaaS, security teams often have a different opinion. These apps […]
Data security news & resources

Why it’s time to say goodbye to proxy-based SaaS security
SaaS security solutions like cloud access security brokers (CASB) and cloud-based data loss prevention (DLP) have become a must-have to prevent data leakage and exfiltration in popular cloud apps like Slack, Google Workspace and Office 365. In theory, these tools give security administrators much needed visibility and control over the sensitive information that resides in […]

What is the difference between SaaS security posture management (SSPM) vs cloud data loss prevention (DLP)?
So, you want to secure your SaaS apps. You’ve realized that Slack and Teams are a potent source of data leakage and you’re increasingly worried about the threat of credentials compromise. Chances are, you’ve taken to the web to look for a security solution to solve all your SaaS woes, only to end your search […]

What is SaaS security posture management (SSPM)?
We all know that cloud apps like Slack, Teams and Google Workspace are the backbone of modern business. But they’re also a huge risk to compliance and security. Research shows that the average company has a $28 million data breach risk because of exposed data in SaaS environments. Risks like data leakage, compromised credentials and […]

Atlassian data breach highlights crucial SaaS security learnings
Atlassian received a nasty surprise late last week, after the hacking group SiegedSec leaked stolen company data on Telegram, including confidential floor maps of its offices in Sydney and San Francisco and, more concerningly, sensitive information about its employees. Like quite a few recent breaches, the hacking group didn’t actually break into Atlassian’s IT infrastructure. […]

Does Data Loss Prevention (DLP) support zero trust?
In the modern world of work, zero trust security is the holy grail that all organizations aspire to. It’s easy to see why. With a solid framework in place, you can completely eradicate the risk of data breaches and theft. However, right now, reaching this state of cybersecurity maturity is proving difficult for many. After […]

How to secure SaaS applications in schools?
Digitalization has, undoubtedly, been revolutionary for the education sector. Remote learning opportunities, cloud apps and even virtual reality present innovative and novel ways for students to learn. However, the rise of technology within schools has not come without its challenges – especially when it comes to cybersecurity. With K-12 institutions producing and storing more data […]

What is Fourth party data sharing? Could be the silent security risk !
Outsourcing has become the bedrock of business in the digital world. Need marketing support? An app developer? Product packaging? Whatever the task, there’s a third-party out there that can do the work for you. But did you ever stop and think about your third-parties, third-parties? Just as your business acquires new skills and saves time […]

How can DLP help in Cyber Forensics?
Courtroom dramas may be fun to watch on TV, but no enterprise legal team actually wants to end up on the stand. And yet, with the rise of cyber-attacks, whistleblower complaints and class-action lawsuits, commercial disputes over data loss and theft are increasingly commonplace. Your day in court could be round the corner, so it’s […]

Is DLP a Requirement for ISO 27001:2022 ?
All security folks are familiar with ISO 27001. This powerhouse of a standard is the paradigm of information security excellence, designed to help organizations keep data safe, prevent cyber-attacks and manage security threats through the creation of an information security management system. Beyond just being good for cybersecurity, ISO 27001 is also vital for business […]

Psychology, security & SaaS: A better approach to security awareness training
Human error and negligence are among the top causes of data breaches and leaks today. Most organizations have cybersecurity awareness initiatives in place, but these programs fail to drive impactful, long-term change. Why? Well, research shows it’s probably because your people haven’t been given the right ‘nudge.’ Cybersecurity through the eyes of psychology Five years […]