AO Labs
-
Enterprise ServiceNow Knowledge Bases at Risk: Extensive Data Exposures Uncovered
Read the blog to learn about ServiceNow’s Knowledge Base data exposure risks and how to mitigate these issues.
-
Potential Widespread Data Exposure Analysis: Oracle NetSuite
Read the blog for an analysis on the potential data exposure of Oracle NetSuite with a thorough understanding of NetSuite access control…
-
Step-by-Step Guidance to Secure SaaS Environments including Snowflake and ServiceNow
Learn the chain of events behind the Snowflake breach and get guidance to secure your SaaS environments including Snowflake & ServiceNow.
-
How to Simulate Session Hijacking in Your SaaS Applications
In this second blog of our technical series on session hijacking, learn about the challenges associated with detecting compromised sessions and more.
-
Salesforce Community Cloud Scanner
Learn how to secure your Salesforce Community websites from data exposure risks with support from the AO Labs threat research team.
-
Midnight Blizzard and Cloudflare-Atlassian Cybersecurity Incidents
Spear-phishing, misconfigurations and vulnerabilities in third-party app integrations demonstrate the complex security challenges facing IT systems.
-
Research Brief: A Risk-Based Approach to SaaS Security
Legacy cloud security tools are limited, only providing an ‘outside-in’ view into SaaS. Only SSPM can observe and quantify SaaS security risks.
-
CISO Guide: Assessing SaaS Vendor Security
Discover the differences between SaaS and PaaS, the security risks, how these risks compound in hybrid SaaS/PaaS applications, and how you can…
-
A Technical Analysis and Lessons From The Recent Service Now Misconfiguration Risks
Learn more about the ServiceNow updates to mitigate ACL misconfiguration risks and how to avoid regressing your organization’s data security posture moving…
-
Claiming Zoom Rooms Service Accounts to Gain Access to Zoom Tenants
Learn how Zoom Rooms service accounts could have been misused to gain unauthorized access to Zoom tenants and potentially disclose sensitive information.