The Transform Technology Summits begin on October 13th with Low-Code / No Code: Enabling Enterprise Agility. Join Now!
The report found that up to 40% of their SaaS data access is unmanaged, meaning anyone with a private or public link can expose the data to thousands of outside workers whose relevance is unknown, according to a new report from DoControl.
The report serves as a wake-up call for CISOs, CTOs, and CIOs who are currently unaware of the internal and external threats to which their unmanaged data in SaaS applications is exposed. Clearly, this poses a significant risk to the organizations that store this data and increases the likelihood of a data breach exponentially. The most surprising finding from the report, which is based on aggregated, anonymized US customer data, is that companies do not know how much data access is still granted to former employees, former suppliers and former partners.
On average, a 1,000-person company stores between 500,000 and 10 million assets in SaaS applications, and companies with unmanaged data may allow up to 200,000 of those assets to be publicly shared. DoControl aggregated and analyzed the data from the report and sorted the results into internal and external threats.
In terms of insider threats, an average of 400 encryption keys and 20% of SaaS assets are shared internally with anyone with a link, exposing many employees to data points they are not authorized to see. Regarding external threats, between 1,000-15,000 external employees and 200-3,000 third-party companies have access to corporate resources, and 18% of SaaS application resources that are shared externally remain accessible even after users have been deleted.
Read DoControl’s full report.
VentureBeat’s mission is to be a digital marketplace for tech decision makers to gain knowledge of transformative technologies and transactions. Our website provides essential information on data technologies and strategies to help you run your organization. We invite you to become a member of our community to gain access:
- current information on the topics of interest to you
- our newsletters
- closed thought leadership content and discounted access to our award-winning events such as Transform 2021: Learn more
- Network functions and more
become a member