Cloud Security Podcast by Google EP148 Decoding SaaS Security: Demystifying Breaches, Vulnerabilities, and Vendor Responsibilities
10 snips
Nov 12, 2023 
Adrian Sanabria, Director of Valence Threat Labs, talks about the structured approach to securing SaaS and the realistic threats to SaaS tools. They discuss the Microsoft 365 breach and the need for CVEs in SaaS vulnerabilities. The least understood aspects of securing SaaS are also addressed. The misconception that SaaS vendors handle all security responsibilities is debunked. The importance of IAM culture and hygiene governance in SaaS security is emphasized.
AI Snips
Chapters
Transcript
Episode notes
SaaS Security Overlooked
- SaaS security often gets overlooked when discussing broader cloud security.
- Accessing infrastructure clouds like AWS, Azure, and GCP often involves SaaS interfaces.
Shift to API-First Web Apps
- Adrian Sanabria notes a shift in web apps from monolithic structures to API-first interfaces.
- This change impacts security tools like CASBs that rely on inline traffic inspection.
Office 365 Logging Issue
- In a BEC case involving Office 365, Adrian's team found logging wasn't enabled by default.
- This hindered their investigation into compromised email access and bank account changes.