Tag: saas
-
Immer mehr Ransomware-Bedrohungen in SaaS-Umgebungen
Ransomware ist und bleibt eines der höchsten Risiken für Unternehmen. Laut Aussagen von Security-Experten sind knapp 60 Prozent der Unternehmen Opfer eines Ransomware-Angriffs Tendenz steigend. Nach Angaben von Microsoft haben Cyber-Bedrohungen, die es auf SaaS-Umgebungen abgesehen haben, stark zugenommen. Demnach wurden 7.000 Passwort-Angriffe pro Sekunde blockiert (allein in Entra ID) und Phishing-Attacken sind um 58 […]…
-
SaaS-Infrastrukturen NIS2-konform gestalten
Die NIS2-Richtlinie stärkt die Cybersicherheit und gilt für öffentliche und private Einrichtungen in 18 Sektoren mit mindestens 50 Beschäftigten oder 10 Millionen Euro Umsatz. Rund 40.000 deutsche Unternehmen sind betroffen. Ziel ist es, die Widerstandsfähigkeit durch umfassende Risikomanagementmaßnahmen zu erhöhen. Hier einige wichtige Tipps für die Vorbereitung zur NIS2-Konformität. First seen on itsicherheit-online.com Jump to…
-
Software Bill of Material umsetzen: Die besten SBOM-Tools
Tags: api, business, compliance, container, cyberattack, data, docker, gartner, github, gitlab, healthcare, linux, monitoring, open-source, risk, saas, sbom, service, software, tool, update, vulnerabilityNur wenn Sie wissen, was drinsteckt, können Sie sich sicher sein, dass alles mit rechten Dingen zugeht. Das gilt für Fast Food wie für Software. Um Software abzusichern, muss man wissen, was in ihrem Code steckt. Aus diesem Grund ist eine Software Bill of Material, SBOM oder Software-Stückliste heute unerlässlich. Der SolarWinds-Angriff sowie die Log4j-Schwachstelle…
-
SailPoint’s Public Return Highlights SaaS Growth Strategy
President Matt Mills Shares M&A Vision, Machine Identity Security, Market Expansion. SailPoint returns to the public markets, and President Matt Mills discusses the company’s SaaS evolution and market expansion plans. He outlines how proceeds from the IPO will be used and highlights new tools for managing the growing risk from unmanaged machine identities. First seen…
-
Die besten IAM-Tools
Tags: access, ai, api, authentication, automation, business, ciso, cloud, compliance, endpoint, gartner, governance, iam, identity, infrastructure, login, mfa, microsoft, okta, password, risk, saas, service, tool, windows, zero-trustIdentity & Access Management ist für sicherheitsbewusste Unternehmen im Zero-Trust-Zeitalter Pflicht. Das sind die besten IAM-Anbieter und -Tools.Identität wird zum neuen Perimeter: Unternehmen verlassen sich immer seltener auf die traditionelle Perimeter-Verteidigung und forcieren den Umstieg auf Zero-Trust-Umgebungen. Sicherer Zugriff und Identity Management bilden die Grundlage jeder Cybersicherheitsstrategie. Gleichzeitig sorgt die Art und Weise, wie sich…
-
Palo Alto Networks Seeing ‘Very Large’ Wins After IBM QRadar Deal: CEO Nikesh Arora
Palo Alto Networks has had a “spectacular” partnership with IBM following the cybersecurity vendor’s acquisition of the IBM QRadar SaaS business, which has helped to deliver on the goal of driving customers to the company’s XSIAM security operations platform, Palo Alto Networks CEO Nikesh Arora told analysts during the company’s quarterly call Thursday. First seen…
-
Grip Security Adds SaaS Security Posture Management Offering
Grip Security today extended its portfolio of tools for securing software-as-a-service (SaaS) applications to provide an ability to proactively identify misconfigurations and enforce best cybersecurity practices. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/grip-security-adds-saas-security-posture-management-offering/
-
The SaaS Sprawl of 2025: Tackling the Unseen Security Risks
Tackling the Digital Mess The other day, a technician came over to help me with an unresponsive computer. After bringing it back to life, he started rifling through my installed programs. “What’s this one for?” he asked. “And this one?” I stared at him blankly. I had no idea. Some programs had been sitting there……
-
Grip SSPM: Next Evolution in SaaS Identity Risk Management
Grip SSPM enhances SaaS security by automating misconfiguration fixes, engaging app owners, and unifying risk management for a smarter, proactive defense. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/grip-sspm-next-evolution-in-saas-identity-risk-management/
-
SaaS Security: Connecting Posture Management Identity Risk
SaaS security posture management and identity risk are deeply connected. Learn how to unify visibility, automation, and control to protect your SaaS ecosystem. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/02/saas-security-connecting-posture-management-identity-risk/
-
NIS2 trifft auf SaaS-Infrastruktur Tipps wie die Richtlinie sichergestellt wird
Die NIS2 (Network Information Security Directive) -Richtlinie zur Sicherheit von Netzwerken setzt neue Maßstäbe für die Cybersicherheit. Sie ist bekanntlich für öffentliche und private Einrichtungen in 18 Sektoren bindend, die entweder mindestens 50 Beschäftigte haben oder einen Jahresumsatz und eine Jahresbilanz von mindestens 10 Millionen Euro. Nach Schätzungen sind bis zu 40.000 deutsche Unternehmen von der…
-
ZeDIS ersetzt GSTOOL – ITZBund vereinheitlicht IT-Grundschutz mit SaaS-Lösung
Tags: saasFirst seen on security-insider.de Jump to article: www.security-insider.de/itzbund-vereinheitlicht-it-grundschutz-mit-saas-loesung-a-4b86c794654d9e44312ca98b3131684b/
-
Herausforderung durch SaaS-Sprawl – Kontrolle über SaaS-Identitäten und Zugriffswildwuchs übernehmen
Tags: saasFirst seen on security-insider.de Jump to article: www.security-insider.de/saas-sprawl-sicherheitsrisiken-verwaltungsprobleme-a-8abd1b82f6f17625f7660c2a5dd172cc/
-
Mid-market organizations struggling with SaaS security gaps
Tags: saasFirst seen on scworld.com Jump to article: www.scworld.com/brief/mid-market-organizations-struggling-with-saas-security-gaps
-
SOC 2® Type 2: Preparing for Your First Audit
As a business leader, you know the stakes are high when it comes to data security. Whether you’re a SaaS company, a fintech startup, or a growing enterprise serving clients with stringent compliance requirements, achieving SOC 2® Type 2 certification is a critical step toward earning and maintaining your customers’ trust. But how do you……
-
Die besten Cyber-Recovery-Lösungen
Tags: access, ai, backup, business, cloud, cyber, cyberattack, data, detection, endpoint, Hardware, incident response, mail, malware, microsoft, mitigation, monitoring, ransomware, risk, saas, service, software, threat, tool, update, vulnerability, zero-trust -
How bots and fraudsters exploit free tiers in AI SaaS
The latest wave of artificial intelligence (AI) improvements significantly improved the quality of models for image and text generation. Several companies, such as OpenAI (ChatGPT) and Claude provide services, often in the form of software as a service (SaaS) that make it easy for users to interact with these AI First seen on securityboulevard.com Jump…
-
KI und Zero-Day-Schwachstellen untergraben die Web-Security
Wegen der zunehmenden Umstellung von Unternehmen auf Web-Arbeitsumgebungen, SaaS-Plattformen, Cloud-basierte Anwendungen, Remote-Arbeit und BYOD-Richtlinien konzentrieren sich Hacker verstärkt auf Browser und nutzen Schwachstellen schneller als je zuvor aus. Der Anstieg von KI-gestützten Angriffen, Ransomware-as-a-Service (RaaS) und Zero-Day-Schwachstellen, die sich auf das Web fokussieren macht deutlich, dass ein neuer Ansatz für die Browser-Sicherheit erforderlich ist. Traditionelle…
-
BeyondTrust Zero-Day Breach 17 SaaS Customers API Key Compromised
BeyondTrust, a leading provider of identity and access management solutions, disclosed a zero-day breach impacting 17 Remote Support SaaS customers. The incident, detected on December 5, 2024, has been linked to the compromise of an infrastructure API key used to access specific Remote Support SaaS instances. The breach allowed attackers to reset local application passwords…
-
Only 3% of organizations have a dedicated budget for SaaS security
Tags: saasMid-market organizations are grappling with managing the large volume of SaaS applications, both sanctioned and unsanctioned, with actual numbers often exceeding expectations, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/02/03/mid-market-organizations-saas-risks/
-
The Old Ways of Vendor Risk Management Are No Longer Good Enough
Managing third-party risk in the SaaS era demands a proactive, data-driven approach beyond checkbox compliance. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/old-ways-vendor-risk-management-no-longer-good-enough
-
Uncover Hidden Browsing Threats: Get a Free Risk Assessment for GenAI, Identity, Web, and SaaS Risks
As GenAI tools and SaaS platforms become a staple component in the employee toolkit, the risks associated with data exposure, identity vulnerabilities, and unmonitored browsing behavior have skyrocketed. Learn how a complimentary LayerX risk assessment can help identify, assess, and address browsing and SaaS risks in your workplace. First seen on bleepingcomputer.com Jump to article:…
-
DeepSeek AI angegriffen?
Tags: ai, attack, ceo, china, ciso, cyberattack, cybersecurity, cyersecurity, ddos, infrastructure, nvidia, openai, saas, service, startup, vulnerability -
DeepSeek hit by cyberattack and outage amid breakthrough success
Tags: access, ai, apple, attack, ceo, china, compliance, control, cyberattack, cybersecurity, data, detection, encryption, finance, GDPR, google, group, HIPAA, infrastructure, malicious, nvidia, open-source, risk, saas, service, startup, technology, threat, tool, training, vulnerabilityChinese AI startup DeepSeek said it was hit by a cyberattack, prompting the company to restrict user registrations and manage website outages as demand for its AI assistant soared.According to the company’s status page, DeepSeek has been investigating the issue since late evening Beijing time on Monday.”Due to large-scale malicious attacks on DeepSeek’s services, registration…
-
SaaS Breaches Skyrocket 300% as Traditional Defenses Fall Short
Obsidian found that threat actors are focusing on SaaS applications to steal sensitive data, with most organizations’ security measures not set up to deal with these attacks First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/saas-breaches-defenses-short/
-
New Bruteforce Campaign Exploits fasthttp Library to Target Azure Environments
On January 13, the SpearTip Security Operations Center, in collaboration with Managed SaaS Alerts, uncovered a sophisticated cyber First seen on securityonline.info Jump to article: securityonline.info/new-bruteforce-campaign-exploits-fasthttp-library-to-target-azure-environments/
-
Discover Hidden Browsing Threats: Free Risk Assessment for GenAI, Identity, Web, and SaaS Risks
As GenAI tools and SaaS platforms become a staple component in the employee toolkit, the risks associated with data exposure, identity vulnerabilities, and unmonitored browsing behavior have skyrocketed. Forward-thinking security teams are looking for security controls and strategies to address these risks, but they do not always know which risks to prioritize. In some cases,…
-
Mitiga Banks $30M Series B to Expand Cloud and SaaS Security Platform
New York/Israel startup selling threat detection, investigation, and response tools raised $30 million in a Series B led by SYN Ventures. The post Mitiga Banks $30M Series B to Expand Cloud and SaaS Security Platform appeared first on SecurityWeek. First seen on securityweek.com Jump to article: www.securityweek.com/mitiga-banks30m-series-b-to-expand-cloud-and-saas-security-platform/