New Risk Of Malware Found In SaaS Applications

Along with the threat of data breach by terminated employees, threats due to malware are added to the security risks of cloud applications

Netskope's new research has found that the continued growth of malware delivered by cloud applications and the potential for data breaches from terminated employees have starkly increased, adding to cloud application security risks.

This is what the article published in Securitymagazine says:

  • Ex-employees present significant cloud security risks. Workers have been proven to be uploading three times more data than usual to personal cloud apps in their last 30 days of employment.

  • 97% of cloud apps used in the enterprise are shadow IT, unmanaged, and often freely adopted.

  • Third-party plugins pose serious risks when it comes to data, as the report shows 97% of Google Workspace users have authorized at least one third-party app, which might expose all data to third parties, for example, due to the wide scopes like "View and manage the files in your Google Drive."

  • Cloud-delivered malware is at an all-time high of 68%, with cloud storage apps accounting for nearly 67% of that cloud malware delivery and malicious Office docs now accounting for 43% of all malware downloads.

  • Organizations must progress in innovation. This includes maintaining and securing business applications and data with access to BYOD.

  • Businesses are increasingly implementing Zero Trust Strategy to reduce the risks associated with a hybrid work environment. One way to do this is to adopt the principle of least privilege access, allowing companies to control user and application privileges better.

What We Think?

We have been strong advocates of the Zero Trust Strategy and it’s definitely one of the best ways to go forward. You can read more about it here.

You can read the full article here.