SaaS Security Resources

FeaturedCustomer ImpactBlogVideosOne-PagersWhitepapers
Filter by Category
Chevron
SaaS SecuritySaaS Security Posture ManagementSaaS IntegrationsSaaS ConfigurationsSaaS RisksSaaS AttacksSaaS Identity Management
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
SaaS Misconfiguration Misconceptions Debunked

SaaS Misconfiguration Misconceptions Debunked

We hear a lot about attackers exploiting vulnerabilities, but did you know that misconfigurations are just as common? In this blog, we delve into the realm of common misconfigurations and provide insights on how to proactively prevent them.

Read Now
Watch the case study
SaaS-Configurations
SaaS-Identity-Management
SaaS-Integrations
SaaS Identity and Employees: the Keys to Productivity and Breaches

SaaS Identity and Employees: the Keys to Productivity and Breaches

‍There’s a lot of focus in cybersecurity on vulnerabilities, exploits, and assets. We focus on the data that was stolen, the device that was hacked, or the malware deployed. At the center of all these incidents, however, are identities. This blog delves into identity challenges that are related to the distributed nature of SaaS applications and platforms.

Read Now
Watch the case study
No items found.
Salesforce Security Best Practices When Using Named Credentials

Salesforce Security Best Practices When Using Named Credentials

Learn SaaS security best practices for implementing named credentials in Salesforce.

Read Now
Watch the case study
No items found.
External Data Sharing Is Out Of Control: But Does It Have to Be?

External Data Sharing Is Out Of Control: But Does It Have to Be?

Secure data sharing has historically posed significant challenges for enterprises. This blog delves into the hurdles faced by organizations governing data including legacy methods of data sharing (email attachments, file transfer software and sync & share solutions) as well as modern, cloud-based SaaS methods.

Read Now
Watch the case study
No items found.
Exploring the Microsoft Storm-0558 SaaS Breach

Exploring the Microsoft Storm-0558 SaaS Breach

On June 16, 2023, a Microsoft 365 customer alerted Microsoft to some anomalous email activity they had detected. Microsoft began investigating and found that an external adversary had compromised the email of 24 other customers as well.

Read Now
Watch the case study
SaaS-Attacks
SaaS-Security-Posture-Management
SaaS-Integrations
More SaaS Adoption → More SaaS Breaches

More SaaS Adoption → More SaaS Breaches

Despite the frequency of breaches, attackers are fairly predictable. They’re opportunists. They’ll go to where valuable data and useful identities live. Today, more than ever, that leads them to SaaS applications.‍ This blog discusses a number of ways SaaS breaches can occur.

Read Now
Watch the case study
No items found.
Introducing the Valence 2023 State of SaaS Security Report

Introducing the Valence 2023 State of SaaS Security Report

The 2023 Valence State of SaaS Security report compiles our perspective on SaaS security, the latest threats, data from dozens of real companies, and finally, our recommendations and predictions for this market.

Read Now
Watch the case study
No items found.
How Generative AI Benefits SaaS Security

How Generative AI Benefits SaaS Security

The Valence AI Assistant can analyze SaaS security risks and help security teams quickly define a remediation plan.

Read Now
Watch the case study
No items found.
The Digital Office Moved to SaaS

The Digital Office Moved to SaaS

The digital office has moved and it seems like we’re in a constant state of catching up. The modern organization’s files, schedules, communications, concerns, plans, and goals all live in SaaS applications today. It’s easier than ever to collaborate, but it’s also easier than ever for data to leak.

Read Now
Watch the case study
No items found.
2023 SaaS Management Index Report

2023 SaaS Management Index Report

In the 2023 Zylo SaaS Management Index Report, researchers provide data, trends and actionable insights from their database of SaaS spend, license and usage data. The most notable of these findings–a staggering 69% of SaaS spend and 82% of SaaS apps by number are adopted and managed by individuals or business units, not IT.

Read Now
Watch the case study
No items found.
Valence Security ThreatLabs Alert: Salesforce Risk

Valence Security ThreatLabs Alert: Salesforce Risk

Valence Security ThreatLabs Alert: Brian Krebs from Krebs on Security has recently posted that numerous organizations, including banks and healthcare providers, are leaking sensitive info from public Salesforce Community websites due to misconfiguration.

Read Now
Watch the case study
No items found.
Valence Joins Microsoft for Startups Pegasus Program

Valence Joins Microsoft for Startups Pegasus Program

Valence Security is thrilled to be part of the Microsoft for Startups Pegasus Program! A big thank you to Microsoft for consistently supporting the startup ecosystem with programs like these.

Read Now
Watch the case study
No items found.
3 out of 4 Employees Sidestep IT, Bring Their Own Tech

3 out of 4 Employees Sidestep IT, Bring Their Own Tech

According to a Gartner® Press Release, “by 2027, 75% of employees will acquire, modify, or create technology outside IT's visibility, up from 41% in 2022.” Much of this trend is driven by the accelerated adoption of SaaS applications by business owners without the involvement of IT or cybersecurity teams, especially due to the rise of remote work following the COVID pandemic.

Read Now
Watch the case study
No items found.
Detecting Risky Behavior with Microsoft and Valence

Detecting Risky Behavior with Microsoft and Valence

The Microsoft Azure AD team has been busy building identity protection features and making them available via the Microsoft Graph REST API. Valence has been collaborating with the Azure AD team – helping to bring new capabilities to detect Risky Users and Risky Service Principals into our SaaS security platform.

Read Now
Watch the case study
No items found.
Valence 2023 RSA Conference Survival Guide

Valence 2023 RSA Conference Survival Guide

The RSA Conference is one of the largest and oldest cybersecurity conferences and its easy to get disoriented. Valence provides its 2023 RSA Conference Survival Guide to help you get the most of this awesome event.

Read Now
Watch the case study
No items found.
Valence Security is an Innovation Sandbox Finalist

Valence Security is an Innovation Sandbox Finalist

Valence will present its SaaS security solution, which unlocks employee productivity and accelerates safe SaaS adoption, on the first day of this year’s RSA Conference in the annual Innovation Sandbox competition

Read Now
Watch the case study
No items found.
Cybersecurity Excellence Awards 2023: Valence Brings Home the Gold, Twice Over

Cybersecurity Excellence Awards 2023: Valence Brings Home the Gold, Twice Over

For the 2023 Cyber Security Excellence Awards, Valence was awarded GOLD in two categories: Best Cybersecurity Startup and Best Product for SaaS Security Posture Management (SSPM).

Read Now
Watch the case study
No items found.
CircleCI Says Hackers Stole Encryption Keys and Customers’ Secrets

CircleCI Says Hackers Stole Encryption Keys and Customers’ Secrets

CircleCI, a vendor specializing in CI/CD and DevOps tools, confirmed that some customer data was stolen in a data breach last month.

Read Now
Watch the case study
SaaS-Configurations
SaaS-Attacks
SaaS-Integrations
CircleCI, LastPass, Okta, and Slack: Cyberattackers Pivot to Target Core Enterprise Tool

CircleCI, LastPass, Okta, and Slack: Cyberattackers Pivot to Target Core Enterprise Tool

Dark Reading contributing writer Robert Lemos discusses how threat actors are increasingly focusing on exploiting core enterprise services.

Read Now
Watch the case study
SaaS-Attacks
SaaS-Integrations
GitHub Accounts Breached…Again

GitHub Accounts Breached…Again

Over the holiday weekend, the popular messaging app vendor Slack was notified of a breach of their GitHub account.

Read Now
Watch the case study
SaaS-Attacks
SaaS-Identity-Management
SaaS-Integrations
Using SSPM to Start Resolving SaaS Security Issues

Using SSPM to Start Resolving SaaS Security Issues

SaaS security risks go beyond administrative configurations which current SSPMs focus on.

Read Now
Watch the case study
No items found.
Gartner Emerging Tech Impact Radar Reports

Gartner Emerging Tech Impact Radar Reports

Valence Security mentioned as a SaaS Security Posture Management (SSPM) vendor in Gartner’s latest Emerging Tech Impact Radar: Cloud Native and Security reports.

Read Now
Watch the case study
No items found.
Announcing Valence’s Series A Round: Introducing Collaborative SaaS Security Risk Mitigation

Announcing Valence’s Series A Round: Introducing Collaborative SaaS Security Risk Mitigation

Valence announces $25M Series A round led by Microsoft’s M12 venture fund and Introduces Its Collaborative SaaS Risk Remediation Platform

Read Now
Watch the case study
No items found.
Valence Integrates With Azure AD to Reduce SaaS Supply Chain Risks By Enforcing Zero Trust Principles

Valence Integrates With Azure AD to Reduce SaaS Supply Chain Risks By Enforcing Zero Trust Principles

Valence Security has integrated with Azure Active Directory to give customers increased visibility and control over their SaaS supply chain risks.

Read Now
Watch the case study
No items found.
IBM Cost of a Data Breach Report Confirms the Need to Immediately Remediate Supply Chain Risks

IBM Cost of a Data Breach Report Confirms the Need to Immediately Remediate Supply Chain Risks

Recently, supply chain attacks leveraging the interconnectivity of SaaS applications have become increasingly lucrative for cyber criminals. As the 2022 IBM Cost of a Data Breach report points out, one in five data breaches this year was caused by a supply chain compromise.

Read Now
Watch the case study
No items found.
Infographic: Major SaaS Security Breaches 2021-2022

Infographic: Major SaaS Security Breaches 2021-2022

Over the past two years, SaaS adoption has exploded, which has led to an increased frequency and magnitude of SaaS breaches and SaaS supply chain attacks. This infographic shows some of the most destructive recent exploits.

Read Now
Watch the case study
No items found.
The Most Overlooked Element in Most Organizations' Cybersecurity Strategy

The Most Overlooked Element in Most Organizations' Cybersecurity Strategy

Securing the adoption and use of non-human identities is probably the most overlooked element in most organizations' cybersecurity strategy today.

Read Now
Watch the case study
No items found.
Verizon 2022 DBIR Report: Supply Chain Attacks at Record High

Verizon 2022 DBIR Report: Supply Chain Attacks at Record High

The Verizon 2022 Data Breach Investigation Report (DBIR) noted explosive growth in incidents related to partners and the supply chain.

Read Now
Watch the case study
No items found.
Cyber Week 2022 Presentation by Yoni Shohet (5 Minutes)

Cyber Week 2022 Presentation by Yoni Shohet (5 Minutes)

Yoni Shohet, CEO and Co-founder of Valence Security spoke at Cyber Week at the end of June at Tel Aviv University – one of the largest, international cybersecurity conferences in Israel.

Read Now
Watch the case study
No items found.
Democratizing SaaS Security Remediation

Democratizing SaaS Security Remediation

Democratizing SaaS security remediation workflows is increasingly necessary for modern business needs, and security teams must find ways to adapt - not obstruct - such progress.

Read Now
Watch the case study
No items found.
Offboarding: Don't Forget Third-party Non-human Identities

Offboarding: Don't Forget Third-party Non-human Identities

Offboarding of non-human users must become a top priority for CISOs.

Read Now
Watch the case study
No items found.
GitHub and Their Customers are the Latest Victims of Supply Chain Attacks 

GitHub and Their Customers are the Latest Victims of Supply Chain Attacks 

GitHub announces it had discovered that attackers had stolen OAuth user tokens issued to third-party vendors that were used to download private data repositories from dozens of GitHub customers.

Read Now
Watch the case study
No items found.
The Mailchimp Breach Is Just The Latest Supply Chain Attack

The Mailchimp Breach Is Just The Latest Supply Chain Attack

MailChimp, a leading email marketing firm, recently discovered that hackers had gained access to internal customer support and account management tools, which could be used to launch phishing attacks to steal customer data.

Read Now
Watch the case study
No items found.
Three Security Take-aways From The LAPSUS$ Breach of Okta

Three Security Take-aways From The LAPSUS$ Breach of Okta

Okta has denied that the hacker group LAPSUS$ breached their service and performed malicious exploits, while LAPSUS$ claims it has gathered significant Okta customer data over the past several months—enough for additional exploits.

Read Now
Watch the case study
No items found.
Valence Security Completes SOC 2 Type II Certification

Valence Security Completes SOC 2 Type II Certification

We at Valence Security are extremely pleased to announce that we have successfully completed System and Organization Controls (SOC) 2 Type II certification for our first-of-its-kind platform for securing the SaaS mesh.

Read Now
Watch the case study
No items found.
Valence: Illuminating and Securing the Business Application Mesh

Valence: Illuminating and Securing the Business Application Mesh

Valence defines a new category in the cybersecurity landscape. A critical problem space, necessary market education and potential access to the largest network of cybersecurity advisors cemented our decision to partner with YL Ventures, a leading early-stage cybersecurity VC, to fulfill the unique market opportunity we identified

Read Now
Watch the case study
No items found.
PlatformUse CasesResources
CompanyPartnersTrust Center
Stay Updated
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Schedule a Demo
Copyright © 2025 Valence Security | All Rights Reserved | Privacy Policy | Terms of Use |