AppOmni Previews Generative AI Tool to Better Secure SaaS Apps

AppOmni this week unveiled a technology preview of a digital assistant to its platform for protecting software-as-a-service applications that uses generative artificial intelligence to identify cybersecurity issues.
The AskOmni assistant provides access to a natural language chat interface for launching queries that reduces the level of expertise required to employ the SaaS security posture management platform developed by the company.
Capabilities of the AskOmni assistant include risk assessments that surface remediation advice, notifications of excessive user access permissions to sensitive data and real-time threat intelligence.
AppOmni CTO Brian Soby said the goal is to provide cybersecurity teams with more context as they correlate potential threats to SaaS applications that now make up an ever-increasing percentage of the attack surface that needs to be defended.
That requires an ability to identify, correlate and remediate issues faster at a time when cybercriminals are specifically targeting the data that resides in these platforms, he added.
SaaS applications are subject to the same shared responsibility requirements for cybersecurity as any other cloud service, noted Soby.
Each provider of a SaaS application will secure the underlying platform, but ensuring that, for example, credentials are not stolen, or that insiders have access to data they shouldn't is the responsibility of the organizations employing those applications, said Soby.
Addressing that requirement has become especially challenging as the number of SaaS applications organizations use has steadily increased since the COVID-19 pandemic began.
With more employees now working remotely than ever, reliance on SaaS applications within enterprise IT environments has only increased, even as more employees begin to spend time once again in the office.
Regardless of where employees are now working, organizations are not going to replace the SaaS applications they have adopted over the course of the last three years.
It's now the responsibility of cybersecurity teams to ensure the data residing in those applications doesn't get compromised.
It's not clear to what degree generative AI tools such as AskOmni will improve application security, but the overall level of toil required should steadily decline as they become more widely available.
Cybersecurity teams should be able to determine the root cause of an issue without having to navigate overlapping and often conflicting alerts that, over time, increase the overall level of fatigue experienced.
At the same time, the number of incidents that cybersecurity teams will need to respond to should decline as it becomes simpler to proactively protect data before cybercriminals can exfiltrate it.
In the meantime, organizations may want to review the number of SaaS applications they are using.
In the early days of the pandemic, many business leaders decided to adopt SaaS applications with little to no regard for any potential cybersecurity concerns.
In addition to increasing the overall size of the attack surface that needs to be defended, usage of SaaS applications that might have redundant capabilities also increases the total cost of IT. Of course, SaaS applications are not going away any time soon.
The issue now is finding a way to secure the least number of them possible, given all the potential threats against them.


This Cyber News was published on securityboulevard.com. Publication date: Wed, 20 Dec 2023 19:43:04 +0000


Cyber News related to AppOmni Previews Generative AI Tool to Better Secure SaaS Apps

The ONE Thing All Modern SaaS Risk Management Programs Do - Reducing SaaS risk is, without a doubt, a difficult challenge. Gaining visibility into all the SaaS apps used across an enterprise is hard enough, but it becomes an even greater challenge when only a portion of the apps go through the company's ...
8 months ago Securityboulevard.com
CVE-2006-4986 - Grayscale BandSite CMS allows remote attackers to obtain sensitive information via a direct request for (1) certain files in the includes/content directory, (2) includes/shows_preview.php, and (3) adminpanel/configform.php; and files in ...
6 years ago
AppOmni Previews Generative AI Tool to Better Secure SaaS Apps - AppOmni this week unveiled a technology preview of a digital assistant to its platform for protecting software-as-a-service applications that uses generative artificial intelligence to identify cybersecurity issues. The AskOmni assistant provides ...
1 year ago Securityboulevard.com
The Qlik Cyber Attack: Why SSPM Is a Must Have for CISOs - On November 28 2023, Arctic Wolf Labs reported on a new Cactus ransomware campaign which exploits publicly-exposed installations of Qlik Sense, a cloud analytics and business intelligence platform. With a breach like Qlik, the first question that ...
1 year ago Securityboulevard.com
SaaS Asset and User Numbers are Exploding: Is SaaS Data Security Keeping Up? - DoControl's recently released The State of SaaS Data Security 2024 report revealed a striking picture of ballooning SaaS asset and user numbers alongside security gaps that open the door to exploitation. The report, based on data from DoControl's ...
8 months ago Cybersecurity-insiders.com
How the New NIST 2.0 Guidelines Help Detect SaaS Threats - The SaaS ecosystem has exploded in the six years since the National Institute of Standards and Technology's cybersecurity framework 1.1 was released. Back in 2016-2017, when version 1.1 was initially drafted, SaaS held a small but significant place ...
9 months ago Bleepingcomputer.com
How to Eliminate Shadow IT and Achieve a Secure SaaS Environment in 2023 - The prevalence of Shadow IT has grown exponentially over the years, with most organizations being unaware of the security risks of unauthorized cloud applications. Shadow IT is any application or cloud service being used by employees for business ...
1 year ago Thehackernews.com
11 GenAI cybersecurity surveys you should read - Generative AI stands at the forefront of technological innovation, reshaping industries and unlocking new possibilities across various domains. As the integration of these technologies continues, a vigilant approach to ethical considerations and ...
11 months ago Helpnetsecurity.com
IaaS vs PaaS vs SaaS Security: Which Is Most Secure? - Security concerns include data protection, network security, identity and access management, and physical security. While IaaS gives complete control and accountability, PaaS strikes a compromise between control and simplicity, and SaaS provides a ...
1 year ago Esecurityplanet.com
Report Surfaces Extent of SaaS Application Insecurity - An analysis of how 493 organizations are employing software-as-a-service applications published today by Wing Security finds nearly all experienced a security incident involving at least one application. A full 81% reported security incidents ...
10 months ago Securityboulevard.com
ChatGPT Clone Apps Collecting Personal Data on iOS, Play Store - On Android devices, one of the apps analyzed by researchers has more than 100,000 downloads, tracks, and shares location data with ByteDance and Amazon, etc. ChatGPT, the AI software, has already taken the Internet by storm, and that is why ...
1 year ago Hackread.com
What Lurks in the Dark: Taking Aim at Shadow AI - Security teams are confronting a new nightmare this Halloween season: the rise of generative artificial intelligence. Generative AI tools have unleashed a new era of terror for chief information security officers, from powering deepfakes that are ...
1 year ago Darkreading.com
AskOmni simplifies and enhances SaaS security - AppOmni unveiled a groundbreaking advancement with the introduction of AskOmni. This AI-powered SSPM assistant developed by the AppOmni OmniScience team propels SSPM into new dimensions, simplifying security operations and issue remediation, and ...
1 year ago Helpnetsecurity.com
Who is Responsible for Ensuring the Security of Data in SaaS Applications - As SaaS applications became more popular, it was unclear who was responsible for protecting the data. Nowadays, most security and IT teams understand the shared responsibility model, where the SaaS vendor is responsible for the application's ...
1 year ago Thehackernews.com
Reco Employs Graph and AI Technologies to Secure SaaS Apps - Reco today launched a platform that makes use of machine learning algorithms and graph technology to secure software-as-a-service applications. The Reco Identities Interaction graph technology connects to SaaS applications via its application ...
1 year ago Securityboulevard.com
Savvy Launches Identity-First Security Offering to Combat Toxic Combinations Driving SaaS Risk - PRESS RELEASE. TEL AVIV, Israel, Jan. 16, 2024 - Savvy, a software-as-a-service security platform provider, today announced its Identity-First Security offering that uncovers risks created by a toxic combination of identity access management ...
11 months ago Darkreading.com
4 key devsecops skills for the generative AI era - Experts believe that generative AI capabilities, copilots, and large language models are ushering in a new era of how developers, data scientists, and engineers will work and innovate. They expect AI to improve productivity, quality, and innovation, ...
11 months ago Infoworld.com
Social engineering in the era of generative AI: Predictions for 2024 - Breakthroughs in large language models are driving an arms race between cybersecurity and social engineering scammers. For businesses, generative AI is both a curse and an opportunity. It's not just AI models themselves that cyber criminals are ...
7 months ago Securityintelligence.com
Generative AI Takes on SIEM - With more vendors adding support for generative AI to their platforms and products, life for security analysts seems to be getting deceptively easier. While adding generative AI capabilities to security information and event management is still in ...
1 year ago Darkreading.com
SSPM: A Better Way to Secure SaaS Applications  - Security Boulevard - “GenAI can be incredibly powerful, but it must be used with caution,” Nakash warns, and adds that “if not properly managed, it can expose sensitive data or generate misleading insights.” As one report by Forrester notes, 71% of organizations ...
2 months ago Securityboulevard.com
Data Insecurity: Experts Sound the Alarm on 4 Apps Putting User Privacy at Risk - Even though many of us rely on apps to entertain us, guide us, manage our exercise, and connect with family and friends, they are notoriously hard to trust. In an age when technology is constantly evolving, it is almost impossible to tell if a ...
1 year ago Cysecurity.news
How to Build a Data Foundation for Generative AI - Generative AI is not just a general-purpose productivity aid that surfaces information the way a search engine does; with gen AI, organizations can combine their unique, proprietary data with foundation models that have been pre-trained on a broad ...
11 months ago Feeds.dzone.com
What Is a SaaS Security Checklist? Tips & Free Template - SaaS security checklists are frameworks for protecting data and applications in cloud-based environments. These checklists include security standards and best practices for SaaS and cloud applications, and B2B SaaS providers use them to guarantee ...
8 months ago Esecurityplanet.com
Navigating the New Frontier of AI-Driven Cybersecurity Threats - A few weeks ago, Best Buy revealed its plans to deploy generative AI to transform its customer service function. Best Buy's initiative is a harbinger of generative AI deployment in enterprise settings, aiming to increase productivity and improve ...
7 months ago Securityboulevard.com
Latest Information Security and Hacking Incidents - According to 25% of participants in an IBM study conducted in September 2022 among 3,000 companies and tech executives worldwide, security worries stand in the way of their ability to achieve their cloud-related goals. Nowadays, a lot of ...
11 months ago Cysecurity.news

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)