Obsidian Security Releases SaaS Industrial Session Detection Hijacking Feature to Protect Cloud-First Organizations Today

The new feature enables early detection of session hijacking attempts in SaaS applications such as Okta and Azure AD to reduce threats beyond MFA

NEWPORT BEACH, Calif., March 31, 2022-(BUSINESS WIRE)-Obsidian Security, the leader in SaaS Security and Posture Management (SSPM), has announced the ability to detect SaaS session hijacking attempts early in the kill chain on multiple platforms such as Okta , Azure AD, Microsoft 365 and more. The capability is used by more than 80 customers worldwide, including eight Fortune 1000 customers. Attackers have identified that credential theft is less effective due to the widespread use of multi-factor authentication (MFA) by organizations today. . However, tokens associated with sessions of SaaS applications can be reused within time limits to access any and all identity provider (IDP)-related applications, as shown in the recent violation of Okta. In addition, Obsidian is expanding comprehensive posture management capabilities to support ServiceNow, joining an already extensive portfolio of SaaS applications including Microsoft 365, Salesforce, GitHub, Workday, Atlassian, etc.

94% of businesses rely on cloud services and SaaS apps to work in modern, hybrid workforces, complete day-to-day tasks, and store sensitive information. When an IDP is violated, it results in access to all SaaS applications and also sensitive data behind them. There is a shared responsibility that needs to be identified between application vendors, security teams and line of business owners to ensure that all SaaS applications on an organization’s network are protected.

Sophisticated attacks are becoming more common for cloud-first organizations today, so take precautions to avoid session hijacking by identity providers like Okta and Azure AD with the new offer of Obsidian is critical. The unique aspect of our session hijack detection is that it came through 18 months of working directly with the red team at one of our customers. “In today’s dynamic world, where changes in architecture and infrastructure are constant and new threats pop-up every day, having a red team can emulate real-world threat actors and identify areas vulnerable to attack, is worth every cent. ” said Snowflake Vice President of Security Mario Duarte. You can learn more about Obsidian’s session hijacking feature here.

“Often, organizations rely on out-of-the-box security protection for many mission-critical SaaS apps deployed on their networks, including their IDPs, but that’s no longer enough in the environment. today, ”said Glenn Chisholm, CPO and Co-founder at Obsidian. “Now, with our new session hijacking prevention feature, security leaders and teams have more comprehensive protection on their IDP and SaaS apps, more endpoints, and a better understanding where cyber risk exists within their digital infrastructure to prevent future exploits and sophisticated attacks beyond the MFA. ”

About Obsidian Security

Obsidian Security is the first truly comprehensive threat and posture management solution developed for SaaS. Our platform aggregates data across key applications to help your team optimize configurations, reduce over-privilege, and mitigate account compromises and insider threats. The company was founded in 2017 by industry experts from Carbon Black and Cylance along with Ben Johnson, Glenn Chisholm and Matt Wolff. Well-known Fortune 500 companies trust Obsidian Security to secure SaaS apps and tools, such as GitHub, Salesforce, Microsoft 365, ServiceNow, Workday, Google Workspace and Atlassian. Headquartered in Southern California, Obsidian Security is a private company and supported by Greylock Partners, GV, Norwest Venture Partners, and Wing. For more information, visit www.obsidiansecurity.com.

Check out the source version at businesswire.com: https://www.businesswire.com/news/home/20220331005360/en/

Contacts

Jill Creelman
[email protected]

#Obsidian #Security #Releases #SaaS #Industrial #Session #Detection #Hijacking #Feature #Protect #CloudFirst #Organizations #Today #Source Link #Obsidian Security Releases SaaS Industrial Session Detection Hijacking Feature to Protect Cloud-First Organizations Today

Leave a Comment