Threat Research
-
A Technical Analysis and Lessons From The Recent Service Now Misconfiguration Risks
Learn more about the ServiceNow updates to mitigate ACL misconfiguration risks and how to avoid regressing your organization’s data security posture moving…
-
Admin Account Takeover Leads to Full SSO Compromise During AO Labs Research
Discover how AO Labs achieved read/write access of over 200K users & staff on a leading service provider’s Okta instance.
-
Salesforce Misuse of Platform Cache Leads to Widespread Data Exposure
Learn how Salesforce Platform Cache misuse is causing information disclosure in over 80% of implementations handling sensitive data.
-
AO Labs Notes An Over 300% Increase in SaaS Attacks
Learn about the significant upward trend in threat activity on Salesforce Community Sites targeting customer-side misconfigurations.
-
Major Security Misconfiguration Impacting ServiceNow and Other SaaS Instances Discovered
Major security misconfiguration impacting ServiceNow and other SaaS instances discovered nearly 70% of tested instances are leaking data.
-
Avoid Salesforce Security Vulnerabilities When Building Custom Lightning Components in Apex
Lightning Components offer an unlimited amount of functionality. But security vulnerabilities may be introduced within Apex code exploited by a malicious actor.
-
Third-Party Risk in Salesforce Named Credentials
This article provides an overview of Named Credentials, a feature introduced by Salesforce in the Spring ’15 release to combat the issue…
-
Understanding Salesforce Flows and Common Security Risks
Discover how Salesforce Flow Builder simplifies process automation and the key security risks and permission pitfalls to address for safe implementation.
-
Salesforce Lightning Components
Get to know the architecture behind Lightning Aura components and learn how a call to an Apex method with parameters.
