Design Flaw in Google Workspace Could Let Attackers Gain Unauthorized Access

By Newsroom

Cybersecurity researchers have detailed a "severe design flaw" in Google Workspace's domain-wide delegation (DWD) feature that could be exploited by threat actors to facilitate privilege escalation and obtain unauthorized access to Workspace APIs without super admin privileges. "Such exploitation could result in theft of emails from Gmail, data exfiltration from Google Drive, or other

Related tags
November 28^th 2023 at 12:34

The Hacker News
THN Webinar: Inside the High Risk of 3rd-Party SaaS Apps
March 24^th 2023 at 11:43

THN Webinar: Inside the High Risk of 3rd-Party SaaS Apps

By The Hacker News

Any app that can improve business operations is quickly added to the SaaS stack. However, employees don't realize that this SaaS-to-SaaS connectivity, which typically takes place outside the view of the security team, significantly increases risk. Whether employees connect through Microsoft 365, Google Workspace, Slack, Salesforce, or any other app, security teams have no way to quantify their

Related tags
March 24^th 2023 at 11:43