SaaS Attack Surface

Subscribe to all Changelog posts via RSS to stay updated on everything we ship at Nudge Security.

The social media tab within our attack surface dashboard is now generally available. Nudge Security discovers all the social media accounts tied to your corporate email domains and helps you understand who owns them.

With this functionality, all customers and trial users can now:

  • Quickly see all social media accounts associated with your organization
  • Discover employees who have created personal social media accounts using corporate emails 
  • Easily identify who to contact in case of security issues with your organization’s social media accounts

Check it out in the screenshot below, and learn how this fits into our overall SaaS attack surface management capabilities in our recent blog post.

We recently added a new attack surface dashboard, so you can readily monitor your cloud and SaaS attack surface as it changes. 

Leaning on our security expertise and experience, we organize the data we discover about your SaaS estate and supply chain into key focus areas, including:

  • External-facing SaaS apps and domains (what attackers can see)
  • SaaS apps that commonly store corporate IP and sensitive data
  • Critical cloud and software supply chain infrastructure
  • Corporate social media accounts
  • And, well, much more…

Here’s an interactive tour of the new feature:

To learn more about how it works and how you can modernize your attack surface management strategy with Nudge Security, check out our blog.

Today, we released a new OAuth risk scoring feature and improved the way we visualize and classify OAuth grants for easier management and risk prioritization. Additionally, you can now build custom notification rules based on flexible OAuth criteria, including setting an OAuth risk score threshold.

Here’s an interactive tour of the new and improved features:

For more information about these new capabilities, read our release blog post here.

As always, we encourage your feedback!

Nudge Security customers can now subscribe to SaaS breach notifications. 

When a data breach disclosure is discovered for a third- or fourth-party SaaS provider in your SaaS supply chain, Nudge Security will send you an email notification, alerting you to the potential impact of the breach. Here’s a recent example we sent to customers:

So, now whenever a SaaS data breach hits the headlines, you can quickly determine if your organization is in the blast radius.

To subscribe to breach notifications in the product, go to Settings and check “Receive breach notifications.”

See what you've been missing.