SolarWinds CISO Victory After Five-Year Nightmare: SEC Case Thrown Out While Oracle Zero-Day, Salesforce-Gainsight Breach, and Chinese-Russian Cyber Warfare Dominate Headlines
The Salesforce-Gainsight situation really shows how SaaS-to-SaaS integrations can become invisble attack vectors. Most teams grant broad OAuth scopes and never revisit them. What's concerning is how quickly this can escale when you consider that 284 organizations were potentially impacted through just one compromised integration point.
The Salesforce-Gainsight situation really shows how SaaS-to-SaaS integrations can become invisble attack vectors. Most teams grant broad OAuth scopes and never revisit them. What's concerning is how quickly this can escale when you consider that 284 organizations were potentially impacted through just one compromised integration point.