Eliminate wasted SaaS spend to help fund your 2025 priorities

Nudge Security is the only SaaS management platform that discovers up to two years of historical SaaS spend within minutes of starting a free trial.

Social engineering campaign using fake reviews on the Chrome Web Store

LastPass has reported a social engineering campaign using fake reviews on the Chrome Web Store.

AD/LDAP delegated authentication bypass - username above 52 characters

On October 30, 2024, a security flaw was detected in Okta’s AD/LDAP Delegated Authentication (DelAuth) service.

Nudge Security is TWO years old this month 🎂

To celebrate our second birthday, we're reflecting on our journey—and all the new features we've added to help customers scale SaaS security and governance.

DocuSign SaaS services used to deliver phishing campaigns

Attackers have been utilizing DocuSign’s SaaS platform to deliver phishing campaigns that are able to bypass email security checks.

What savvy security leaders are prioritizing for 2025

Why SaaS security should be a core element of your IT security and governance program.

How to conduct an AI risk assessment

A practitioner's guide to running an AI risk assessment in order to safeguard organizational data and reputation.

Managing vendor risk in the SaaS supply chain

Why effective vendor risk management is a critical strategy for identifying, assessing, and mitigating risks within the SaaS supply chain.

A complete guide to shadow IT discovery

Why comprehensive shadow IT discovery is an essential first step toward securing an organization's SaaS estate.

A guide to supply chain management software & SaaS

How to map your SaaS supply chain automatically, so you can quickly determine if a third- or fourth-party breach puts you at risk.

Midnight Blizzard using Microsoft Teams to launch spear phishing campaigns

Midnight Blizzard has been actively targeting organizations across various sectors since at least 2021.

Malicious Google Ads campaign targeting SaaS software downloads

Threat actors are leveraging fake Google Ads linked to deceptive websites that mimic legitimate download pages.

Okta Classic sign-on policy bypass vulnerability

Read a summary of the vulnerability, how it could be exploited, and what to look for to understand if your organization could have been impacted.

The AI adoption curve and what it means for your business

What does the rapid pace of AI adoption mean for cybersecurity leaders as they grapple with AI security and governance?

7 Gartner reads on SaaS security & governance

Learn how top analysts are viewing the emerging SaaS security and governance space.

Top shadow IT risks and how to manage them in 2025

Shadow IT risks present a formidable challenge to modern businesses. Learn to identify shadow IT risks and regain control of your security posture.

The definitive guide to SaaS security posture management

How SSPM solutions help automate the detection, remediation, and reporting of configuration issues, identity risks, and other SaaS security threats.

How to de-risk your critical identity infrastructure with Nudge Security’s new SSPM capabilities

Detect and fix risks and misconfigurations in Google Workspace and Microsoft 365 with Nudge Security.

The three-body problem of SaaS security

Why the classic physics challenge might feel familiar to those operating within the “shared security model” for SaaS applications.

Nudge Security’s BSides CTF solution: An overview

Enjoy a step-by-step explanation of the challenges and solutions for our capture the flag competition.

A deep dive on SaaS spend management

How to use spend data and insights to prioritize your SaaS rationalization efforts, maximize impact, and earn quick wins.

The hidden dangers of ChatGPT’s integrations with Google Drive and Microsoft OneDrive

While the convenience of integration can boost productivity, the cybersecurity risks can be significant.

Nudge Security named in Honorable Mentions list in the inaugural 2024 Gartner®️ Magic Quadrant™️ for SaaS Management Platforms

While we are proud to be included in this report, we are even more encouraged by the recognition of this emerging market.