We are excited to bring Transform 2022 back in-person July 19 and virtually July 20 - 28. Join AI and data leaders for insightful talks and exciting networking opportunities. Register today!
Up to 40% of SaaS data access is unmanaged, which means that anyone with a private or public link can expose the data to thousands of external collaborators whose relevancy is unknown, according to a new report by DoControl.
The report serves as a wake up call for CISOs, CTOs, and CIOs who are currently unaware of the internal and external threats facing their unmanaged data in SaaS applications. Clearly, this poses a significant risk to the organizations that house this data and exponentially increases the likelihood of a data breach. The most surprising takeaway from the report, which is based on aggregated, anonymized US customer data, is that companies are unaware of how much data access is still afforded to former employees, former vendors, and former partners.
On average, a 1,000-person company stores between 500,000 to 10 million assets in SaaS applications, and companies with unmanaged data may be allowing up to 200,000 of these assets to be shared publicly. DoControl aggregated and analyzed the data from the report and sorted the findings into internal and external threats.
In terms of insider threats, an average of 400 encryption keys and 20% of SaaS assets are shared internally to anyone with a link, exposing many employees to data points that they are not authorized to view. In regards to external threats, between 1,000-15,000 external collaborators and 200-3000 third-party companies have access to company assets, and 18% of SaaS application assets that are shared externally remain accessible even after deleting users.
Read the full report by DoControl.
VentureBeat's mission is to be a digital town square for technical decision-makers to gain knowledge about transformative enterprise technology and transact. Learn more about membership.