As signs of a global recession continue to linger, many businesses are still tightening their spending across the board. Though cybersecurity remains a critical concern for virtually every type of organization, even security leaders may need to watch their spending—while somehow still keeping pace with the latest threats and risk exposures.

The use of third-party apps (also known as “connected apps”, “cloud to cloud apps”, “OAuth apps”) are apps developed by external and internal developers or organizations that can interact with and extend the functionality of a primary SaaS App. These are growing exponentially across organizations.

Netskope Threat Labs is tracking a campaign that uses malicious Python scripts to steal Facebook users’ credentials and browser data. This campaign targets Facebook business accounts with bogus Facebook messages with a malicious file attached. The attacks are reaching victims mainly in Southern Europe and North America across different segments, led by the manufacturing services and technology sectors.

As enterprises continue to re-engineer their infrastructure to enable secure productivity for workforces, wherever they may be, Netskope is deepening its alliances with global system integrators who have the experience and worldwide presence to guide those digital transformation projects.

Netskope Threat Labs publishes a monthly summary blog post of the top threats we are tracking on the Netskope platform. The purpose of this post is to provide strategic, actionable intelligence on active threats against enterprise users worldwide.

It’s not news that cybersecurity is now a board-level imperative. But with all the talk about that, here’s something we don’t talk about enough: board directors and other senior executives might know they need to have these conversations, but in many cases are still struggling with how to have them in a productive way, especially if they aren’t technical or haven’t spent any real time in a technology role.

When talking to infrastructure and operations teams, one common concern when moving to a SASE architecture is the loss of visibility and control that they have historically been accustomed to. Overnight traffic destined for critical business applications, both private and public, routes through what is often seen as a black box, or in today’s world, more of a “gray cloud.”

For infrastructure and operations (I&O) teams, the transition from legacy architectures to a modern zero trust architecture is far from straightforward. Teams often face a complex patchwork of fragmented and siloed systems of different vintages, along with the challenge of managing dozens of disparate security and networking vendors.