SAN FRANCISCO — May 3, 2023 — AppOmni, the leader in SaaS Security, has announced its free Salesforce Community Cloud Scanner to help organizations secure their Salesforce Community websites from data exposure risks and misconfigurations.
Salesforce data leaks recently identified by Krebs on Security have resulted in exposure of numerous Salesforce Community Cloud customers’ sensitive data. These data leaks occur when Salesforce customers’ access control permissions are misconfigured. The Salesforce misconfigurations, along with others previously discovered by AppOmni’s Principal SaaS Security Engineer Aaron Costello, are frequent targets for threat actors seeking to compromise an organization’s SaaS estate.
AppOmni’s Salesforce Community Cloud Scanner will evaluate Salesforce instances for misconfigurations and data exposure risks. The scanner will then determine if a Salesforce Community Cloud instance is impacted by the recently disclosed data exposures and provide steps for remediating them.
The Salesforce Community Cloud scanner is available at appomni.com/salesforce-community-cloud-scanner. “These Salesforce data leaks — and the permissions misconfigurations that led to them — reinforce the urgency for organizations of all stripes to prioritize Salesforce and SaaS security,” Brendan O’Connor, AppOmni CEO and Co-Founder, said. “The importance of identifying and mitigating these risks cannot be overstated.”
While the scanner is designed for Salesforce Community Cloud, these risks are not unique to Salesforce. As SaaS products have grown exponentially more powerful and complex, ensuring correct security and access configuration settings are in place across the SaaS ecosystem is increasingly challenging for overburdened SaaS application owners and security teams. The matter is further complicated as SaaS providers routinely introduce new features into their products and enable them by default, boosting the likelihood of inadvertently exposing SaaS customers to new risks.
AppOmni is the leader in identifying and remediating these SaaS security risks. The company provides security and IT teams, along with SaaS applications owners, advanced security tooling to understand and remediate misconfigurations, overpermissioned users, data exposure risks, and unsanctioned SaaS-to-SaaS connections. These prevention measures are complemented with AppOmni’s threat detection capabilities to drastically diminish the attack surface and help security teams make smarter decisions, faster.
H-ISAC Spring Americas Summit attendees can visit AppOmni at Booth 47 between May 9 – 11 to speak with Salesforce and SaaS application data exposure and misconfiguration experts. “The ISAC community represents the best in cybersecurity information-sharing and professional growth, and our team is ready and eager to help all ISAC members protect their organizations’ most sensitive SaaS data,” O’Connor added.
For more information about securing Salesforce Community Cloud instances and all SaaS apps, visit appomni.com. Or email [email protected] to learn more.
AppOmni is the leader in SaaS Security. AppOmni provides unprecedented data access visibility, management, and security of SaaS solutions, enabling organizations to secure mission-critical and sensitive data. AppOmni’s patent-pending technology deeply scans APIs, security controls, and configuration settings to evaluate the current state of SaaS deployments and compare against best practices and business intent. With AppOmni, organizations can establish rules for data access, data sharing, and third-party applications that will be continuously and automatically validated. The company’s leadership team brings expertise and innovation from leading SaaS providers, high tech companies, and cybersecurity vendors. Backed by Cisco Investments, Salesforce Ventures, ServiceNow Ventures, Scale Venture Partners and more, AppOmni was recently named as a PURE CYBER 100 “Companies To Watch In 2023” and one of CyberTech 100’s Companies for 2022. The company has been recognized as a Dark Reading Cybersecurity Vendor to Watch and a SINET16 Innovator.