SaaS Security Insights & Updates

Secure Cloud Collaboration: How to Protect Your Data

Discover the challenges of securing collaborative cloud environments and learn a strategy to protect yours.

Melissa Garcia

min read

Jul 11, 2025

Melissa Garcia

min read

Jul 11, 2025

Secure Cloud Collaboration: How to Protect Your Data

Discover the challenges of securing collaborative cloud environments and learn a strategy to protect yours.

Melissa Garcia

min read

Jul 9, 2025

How Do I Revoke OAuth Access from Unauthorized Apps?

Learn the risks of unauthorized OAuth access and why modern solutions are essential for managing this hidden layer of SaaS exposure.

Melissa Garcia

min read

Jul 3, 2025

Zero Trust Data Access: Securing Your Data in a Cloud-First World

Discover what zero trust data access really means, why legacy access controls aren’t cutting it anymore, and how to move toward a smarter, more secure approach

Melissa Garcia

min read

Jul 1, 2025

Shadow Apps and Third-Party Risks: How Connected Apps Threaten Google Workspace Security

Shadow apps - unapproved third-party applications connected via OAuth - pose a growing security risk to organizations using Google Workspace. Learn how shadow apps work, why they’re so difficult to detect, the rise of GenAI-powered integrations, and how platforms like DoControl help organizations discover, assess, and remediate these threats to maintain strong SaaS security.

Melissa Garcia

min read

Jun 30, 2025

How User Behavior Impacts Google Workspace Security: Common Things To Look For

Learn the most common risky user behaviors in Google Workspace and how to protect your company data.

Matt Dubreuil

min read

Jun 26, 2025

The $14B Security Gap: What the Scale AI Incident Teaches Us About Google Workspace Data Risk

Understand the critical security oversight in ScaleAI’s Google Workspace environment that resulted in sensitive data exposure.

Matt Dubreuil

min read

Jun 26, 2025

Innovating at Speed: DoControl Hackathon Highlights What’s Next in SaaS Security

Read about DoControl's 2025 Hackathon. Share our vision as we continue to deliver a deep and comprehensive SaaS data security solution.

Melissa Garcia

min read

Jun 25, 2025

How Do I Know If Former Employees Still Have Access to Company Data?

Learn the risks of lingering employee access after offboarding, show you how these gaps occur, and explain how to build an airtight offboarding strategy that keeps your data protected.

Itai Birenshtok

min read

Jun 24, 2025

How DoControl's Data Infrastructure Redefines Enterprise Speed and Scale

Our customer came to us after losing confidence in their long-time provider. Despite years of service, that vendor had only uncovered about 200 million assets in their Google Workspace. DoControl discovered 276+ million in just minutes. Get the full story.

Melissa Garcia

min read

Jun 23, 2025

The CISO’s Guide to SaaS Security in Cloud Computing

Discover the unique risks SaaS introduces to your environment, and learn what an effective security strategy looks like in a cloud-first world.

Melissa Garcia

min read

Jun 20, 2025

Remediation in Google Workspace Security: What You Can Actually Do

Learn what the limitations of native remediation in Google Workspace and learn how security teams can take full control when it comes to protecting their SaaS environments.

Tamir Passi

min read

Jun 18, 2025

Announcing DoControl Dot: The First AI-Powered SaaS Data Security Assistant

Introducing DoControl Dot, the first AI assistant purpose-built for SaaS data security.

Melissa Garcia

min read

Jun 16, 2025

Google Workspace DLP: Security Gaps You Need to Know

Learn the limitations of Google DLP, and how you can take a layered approach to fill the gaps.

Melissa Garcia

min read

Jun 9, 2025

Secure File Sharing for Business: Protect Data Without Slowing Down Productivity

Learn the risks of file sharing and how your organization can protect its most sensitive data through safe sharing practices.

Melissa Garcia

min read

Jun 4, 2025

How To Know If Sensitive Files Are Publicly Shared In Your Organization

Your sensitive company data can end up online without you even knowing it. Learn how to spot warning signs of exposure and take proactive steps to protect your organization. This guide covers practical tips to help prevent data breaches and keep your information secure.

Melissa Garcia

min read

Jun 2, 2025

The Pitfalls of Public Sharing in Google Workspace Security

Public sharing in Google Workspace is often done out of convenience, but the risks are deeply detrimental. Learn the specific threats it could bring to your organization and how to gain back control.

Melissa Garcia

min read

May 27, 2025

ITDR Part #3: From Reactive to Resilient: Responding to Identity Threats in Real Time

Learn how organizations can move from detecting identity-based threats to actually stopping them in real time – using identity signals to drive policy-based enforcement actions.

Sara Stein

min read

May 22, 2025

Pain Point #6: The Compliance Nightmare: How Google Workspace Misconfigurations Put Your Data At Risk

Learn how to transform your Misconfigurations approach from reactive to proactive, prevent potential data breaches before they occur, and maintain continuous compliance across your entire SaaS stack.

Melissa Garcia

min read

May 20, 2025

The Impact of GenAI on SaaS Security

Generative AI tools like ChatGPT, Claude, and Copilot are transforming how teams work, but they’re also introducing major blind spots in SaaS security. Learn about the biggest risks GenAI tools bring into SaaS environments, and what security leaders can do to protect sensitive data and maintain compliance.

Melissa Garcia

min read

May 19, 2025

ITDR Part #2: Identity Based Threats & How You Can Detect Them from Within

The second part of our ITDR Blog Series brings you how insider threats manifest in SaaS environments, what behaviors to watch for, and how identity profiling and risk scoring can help security teams detect and respond before real damage is done.

Matt Dubreuil

min read

May 15, 2025

The Coinbase Security Breach: A Wake-Up Call for Insider Threat Defense

Discover how the recent Coinbase breach happened and what steps your organization can take to prevent similar cybersecurity threats.

Melissa Garcia

min read

May 13, 2025

ITDR Part #1: Why Identity Is the New Perimeter

In our first part of our ITDR mini series, learn what ITDR is, why its so critical in 2025, and how you can implement a full-proof ITDR strategy to secure your SaaS environment.

Matt Dubreuil

min read

May 9, 2025

Sharpen Your Pencils: Top Security Budget Allocations for a SaaS-First 2025

Our Head of Revenue shares a breakdown of the top budget priorities for SaaS security in 2025, how they're interconnected, their role in your success, + practical ways you can implement them efficiently.

Melissa Garcia

min read

May 8, 2025

SaaS vs. Cloud: Key Differences and Security Risks

Learn the core differences between SaaS and traditional cloud environments. Understand the security risks unique to SaaS and see how DoControl helps modern businesses take back control.

Matt Dubreuil

min read

May 1, 2025

SaaS Security: Why The Time to Act is Now

J.P. Morgan CISO Patrick Opet highlights the urgent need for SaaS security. Discover his insights and key takeaways to strengthen your SaaS security strategy today.

Google Workspace Security: Insider Threats and Identity Challenges

Sara Stein

min read

Apr 29, 2025

Pain Point #5: Insider Threats and Identity Challenges

Within Google Workspace, insider threats and identity challenges are a major liability to organization's SaaS environments. Learn the challenges, risks, and solution to insider threats and identity attacks within Google Workspace and equip your security teams with what they need to secure their SaaS in 2025.

Melissa Garcia

min read

Apr 17, 2025

SaaS Security Assessment: What to Check to Stay Secure

Learn what a SaaS security assessment is, why it matters, what to look for, and how platforms like DoControl help organizations close your organizations data exposure gaps before they become big breaches & even bigger problems.

Melissa Garcia

min read

Apr 10, 2025

The CISO’s Guide to Data Protection for Google Workspace

Learn everything you need to know about data protection as a CISO operating in Google Workspace. Explore key risks in Google Workspace, Google’s native security limitations, and actionable steps to secure your SaaS data at scale.

Matt Dubreuil

min read

Apr 2, 2025

CASB, DLP, SSPM: So Many Terms, Such Little Clarity

A deep dive into the hurdles organizations face when managing SaaS security, examining how CASB, DLP, and SSPM categories fail to properly solve the biggest security gaps of all.

Matt Dubreuil

min read

Mar 31, 2025

DoControl Partners with Wursta to Elevate Google Workspace Security

DoControl is excited to announce our official reseller partnership with Wursta.

Melissa Garcia

min read

Mar 25, 2025

Dropbox vs. Google Drive: Comparing Capabilities & Security Gaps

Learn how how Dropbox and Google Drive compare from a security and data governance perspective. Discover which platform provides better file security for your business - and where third-party security solutions like DoControl can fill in the gaps.

Omri Weinberg

min read

Mar 21, 2025

Why Visibility Isn’t Enough: A Feature on DoControl’s Co-Founder & CEO, Omri Weinberg

Our Co-Founder & CEO, Omri Weinberg, recently sat down with WebsitePlanet to discuss the origins of DoControl, what sets us apart in the SaaS security space, and his expert insights on securing cloud environments. In this interview, Omri shares valuable advice for businesses looking to strengthen their security posture. Check out an excerpt from the conversation!

Melissa Garcia

min read

Mar 20, 2025

How to Conduct a Google Workspace Security Audit

Google Workspace is a powerful collaboration tool, but without proper security measures, it can leave your organization vulnerable to data breaches, compliance risks, and insider threats. This guide walks you through conducting a thorough security audit—covering access controls, third-party app risks, file-sharing settings, and more. Learn best practices for ongoing security, and discover how DoControl automates risk detection and remediation to keep your cloud environment secure.

Melissa Garcia

min read

Mar 17, 2025

Data Classification: A Modern Approach

Learn everything you need to know about data classification: key concepts, complexities, and considerations—plus a modern ‘Just in Time’ approach for smarter, scalable security.

Melissa Garcia

min read

Mar 14, 2025

What is a CASB? A Complete Guide to Cloud Access Security Brokers

Discover what a CASB is, its key functions, and how it helps protect sensitive data, enhance cloud security, and ensure compliance for your business.

Melissa Garcia

min read

Mar 3, 2025

What is Google Drive Encryption?

Google Drive Encryption protects data, but it has its limitations. Learn how Google Drive Encryption works, what its limitations are, and how to enhance security with advanced strategies, access controls, threat protection, and remediation.

Sara Stein

min read

Feb 28, 2025

Pain Point #4: It’s Hard to Leverage Google Labels to Prevent Data Loss

Google Workspace has built a great classification system through its DLP engine and AI capabilities, but it does not provide visibility and actionably into the data exposure of those labels. Understand how to pair Google's Labels with DoControl's solution for comprehensive Google Workspace Security.

Pain point #3: Why Google Enterprise isn't enough for Shadow Apps

Sara Stein

min read

Feb 21, 2025

Pain Point #3: Google Enterprise Isn't Enough Protection Against Shadow Apps

Google Workspace was designed for collaboration, not security, proven by its limited abilities to properly protect your risky third-party applications. Read Part 3 of our 7 part blog series on how to properly address Google Workspace security.

Pain Point #2: Google Workspace DLP Capabilities are Limited

Sara Stein

min read

Feb 13, 2025

Pain Point #2: Google Workspace DLP Capabilities are Limited

Google Workspace was designed for collaboration, not security, proven by its limited DLP capabilities. Read Part 2 of our 7 part blog series on how to properly address Google Workspace security.

Sara Stein

min read

Feb 6, 2025

Pain Point #1: Why is Sensitive Data Overexposed in Google Drive?

Google Workspace was designed for collaboration, not security. Learn about the key challenges organizations face with Google Workspace today and how to effectively mitigate them as part of our Google Workspace Security blog series.

How the U.S. Department of Defense Exposed Critical Military Data via Google Drive Public Sharing

Matt Dubreuil

min read

Jan 27, 2025

How the U.S. Department of Defense Exposed Critical Military Data via Google Drive Public Sharing

The U.S. Department of Defense inadvertently exposed sensitive information through a publicly shared Google Drive. Learn how this breach occurred and discover steps you can take to prevent it from happening in your organization.

Sara Stein

min read

Jan 20, 2025

ITDR: Mastering Identity Threat Detection and Response in 2025

Discover top tools and strategies for effective identity threat detection and response, helping you protect sensitive information and reduce security risks.

Guy Rosenthal

min read

Jan 17, 2025

How DoControl and Google Workspace AI Labels Solve for Data Security

This blog post explains Google Drive Labels, how Google AI automatically creates Labels, and how DoControl combines these Labels with HR and IDP metadata to solve for Data Security

Matt Dubreuil

min read

Jan 10, 2025

Why DoControl Outshines Netskope in SaaS Security

Discover why Netskope customers are shifting their SaaS security to DoControl, leveraging its comprehensive SSPM solution for enhanced data protection and access management.

Hen Amartely

min read

Jan 10, 2025

Google Workspace Security in 2025: Best Practices to Safeguard Your Data

Discover the top 10 Google Workspace security best practices for 2024 to protect your data, enhance security, and prevent cyber threats. Learn more!

2024: A Strong Year of Growth and Innovation at DoControl

Matt Dubreuil

min read

Dec 30, 2024

2024: A Strong Year of Growth and Innovation at DoControl

DoControl had a highly successful year of innovation and growth, further solidifying our position as a market leader. This achievement is the result of company-wide efforts to ensure we are consistently providing the best support to our customers, prospects, and partners.

Matt Dubreuil

min read

Dec 19, 2024

DoControl Named Leader in Frost and Sullivan Radar SSPM

Learn more on why DoControl's comprehensive SSPM solution is leading the market.

Matt Dubreuil

min read

Dec 17, 2024

What is Google Apps Manager (GAM)?

GAM is a powerful tool for Google Workspace administration, but it lacks features to fully secure your data and protect your Google Workspace environment. Discover better ways to safeguard your sensitive information.

Hen Amartely

min read

Dec 10, 2024

Is Storing Sensitive Data on Google Drive Safe? (5 Essential Security Tips)

Learn 5 essential security tips for storing sensitive data on Google Drive. Protect your data with best practices like DLP, PoLP and AI classification.

Hen Amartely

min read

Dec 5, 2024

Top 5 Ways to Secure Your Files and Avoid a Google Drive Data Breach

Learn how to protect your files and avoid a Google Drive data breach with 5 essential security tips, including 2FA, file permissions, and DLP tools.

Hen Amartely

min read

Dec 3, 2024

Top 7 Tips for Secure File Sharing with Google Drive

Learn the top 7 tips for secure file sharing with Google Drive. Protect your personal and corporate data with expert advice on access permissions, DLP and more.

Hen Amartely

min read

Dec 2, 2024

The Hidden Holes in Your IdP Offboarding Process

Discover the hidden vulnerabilities in your IdP offboarding process and how to secure them. Learn how DoControl ensures seamless synchronization, removes personal account access, and monitors departing employees to protect your SaaS data.

Hen Amartely

min read

Nov 21, 2024

Google Workspace Security Assessment: Strengthen Your Security Posture

Learn how to conduct a Google Workspace security assessment to evaluate risks, improve security, and protect your data with our step-by-step guide.

Hen Amartely

min read

Nov 20, 2024

DoControl Unveils Generative AI Assistant for Enhanced Google Workspace Security

DoControl has released an AI assistant to help teams gain real-time insights into Google Workspace security.

Hen Amartely

min read

Nov 18, 2024

Google Workspace Security Compliance: A Guide for Businesses

Explore Google Workspace security compliance with best practices and key features for protecting sensitive data and meeting regulatory standards.

Hen Amartely

min read

Nov 10, 2024

Slack Cyber Security Essentials: Risks, Best Practices and Top Tools in 2025

Find out how to enhance Slack cyber security in 2025 with effective strategies and tools based on real Slack data breaches, their causes and consequences.

Hen Amartely

min read

Nov 4, 2024

Google Drive Security: Key Risks and How to Stay Protected

Discover how Google Drive keeps business data secure in 2025 with encryption, 2FA, and privacy controls. Learn best practices to enhance your data security.

Hen Amartely

min read

Oct 30, 2024

Slack DLP Partners: Choosing and Integrating the Right Solution in 2025

Looking for a reliable Slack DLP partner? Find out what to look for in an integration in order to protect your data, ensure compliance, and prevent unauthorized data exposure.

Hen Amartely

min read

Oct 20, 2024

Google Workspace Security: A Guide for Admins

Learn how to secure your Google Workspace environment with this comprehensive guide for admins. Protect data, prevent breaches, and enhance security.

Hen Amartely

min read

Oct 16, 2024

Google Workspace DLP: The Complete Guide to Data Loss Prevention in SaaS

Discover how to set up and optimize Data Loss Prevention (DLP) in Google Workspace to protect sensitive data and ensure compliance.

Hen Amartely

min read

Oct 13, 2024

Securing Google Workspace After Migrating from Microsoft 365: How DoControl Can Help

Learn how to maintain and enhance security during your migration from Microsoft 365 to Google Workspace. Discover how DoControl helps protect data, manage permissions, and identify risks post-migration.

Hen Amartely

min read

Oct 11, 2024

Is Google Workspace Secure? 7 Risks to Avoid

Learn about the most common Google Workspace security risks and how to avoid them. Protect your business from data breaches and security threats.

Hen Amartely

min read

Oct 9, 2024

5 Reasons Why Google Workspace Data Exposure is So Common

Discover the 5 main reasons for Google Workspace data exposure, from oversharing to incomplete offboarding. Learn practical steps to secure your sensitive data and avoid common risks.

Hen Amartely

min read

Oct 6, 2024

Google Workspace Security Checklist: Essential Steps for Admins in 2024

Discover the essential Google Workspace security steps for 2024. Learn how admins can protect data, ensure compliance, and prevent threats.

Melissa Garcia

min read

Sep 30, 2024

Top SaaS Security Best Practices in 2025

Discover essential SaaS security best practices to safeguard your cloud applications in 2025. Learn how to protect against threats and ensure compliance.

Hen Amartely

min read

Sep 18, 2024

SaaS Data Breaches: Detection & Prevention Strategies

Discover the best practices for preventing data breaches in SaaS environments. Get tips and strategies to secure your applications and protect your data.

Hen Amartely

min read

Sep 15, 2024

SaaS Data Protection: Essential Security Measures in 2024

Discover how to stay ahead in 2024 with the latest SaaS data protection strategies. Learn how to safeguard your cloud data with expert tips and best practices.

Hen Amartely

min read

Sep 11, 2024

5 Key SaaS Security Trends in 2024

Discover the latest SaaS security trends for 2024. Learn best practices to protect your cloud-based applications from threats and data breaches.

Hen Amartely

min read

Sep 4, 2024

What is SaaS DLP? Strategies for Data Loss Prevention in SaaS Applications

Learn what SaaS DLP is and what best practices are for protecting data in cloud applications. Discover how to secure your SaaS environment.

Hen Amartely

min read

Aug 29, 2024

Best Practices for Protecting Your Assets with SaaS Data Security

Learn key SaaS data security strategies, tools, and best practices to protect your cloud-based assets. Stay compliant and safeguard your business from threats.

Hen Amartely

min read

Aug 15, 2024

The 3 Types of Data Breaches and Their Dangerous Impact on Your Data

Discover the primary ways to define types of data breaches, and how knowing which type you’re dealing with enables you to react and mitigate effectively.

Hen Amartely

min read

Aug 4, 2024

SaaS Data Access Governance: A Guide to Simplifying Your Controls

Learn more about data access governance in your SaaS apps, ensuring data access controls are consistent throughout your SaaS environment.

Hen Amartely

min read

Jul 22, 2024

The 5 SaaS Data Loss Prevention Best Practices You MUST Implement

Explore DLP strategies and best practices to protect your organization against SaaS data breaches, leaks, and exposures. Learn how to enhance your data loss prevention today.

Hen Amartely

min read

Jul 19, 2024

SaaS Security Posture Management (SSPM) for Enterprises

Discover how to select a robust SSPM for your enterprise, secure data within SaaS applications, and understand the role of your SSPM in safeguarding your business effectively.

Hen Amartely

min read

Jul 17, 2024

How Disney Could Have Prevented Its Massive Slack Channel Data Breach (3 Actionable Steps)

Uncover how a 1.1 TB Slack data breach exposed Disney's secrets and learn three vital steps to protect your organization.

Hen Amartely

min read

Jul 15, 2024

What's the Difference Between Securing a Cloud Environment vs SaaS Environment?

Securing a cloud environment vs SaaS environment involves unique challenges, security principles, and priorities shaping implementation strategies and protective measures.

Hen Amartely

min read

Jul 10, 2024

Data is the NEW Endpoint: Why Data Security is Critical Now More Than Ever

Learn to enhance data security in SaaS applications and protect your company's vital data in cloud environments. Gain insights into best practices for robust cloud data protection.

Adam Gavish

min read

Jul 4, 2024

What AWS AppFabric Means For SaaS Security?

Discover how AWS AppFabric impacts SaaS security and how DoControl leads in protecting your cloud data and applications, ensuring robust safeguards are in place.

Adam Gavish

min read

Jul 1, 2024

API-CASB Google Workspace - DoControl

Transform Google Workspace security with DoControl API-CASB. Uncover risks, automate threat detection, and protect your Google Drive with ease.

Hen Amartely

min read

Jun 25, 2024

The end of AWS keys in Slack channels

Discover why sharing AWS keys in Slack channels risks sensitive data. Learn effective strategies to safeguard your AWS keys and data from malicious actors and unauthorized access.

Hen Amartely

min read

Jun 24, 2024

Google Workspace Security Weak Spots: From Apps to AI

Discover critical Google Workspace security vulnerabilities related to connected apps and Google’s AI, Gemini & implement effective mitigation measures to protect your company.

Hen Amartely

min read

Jun 21, 2024

NIST SP 800-207 - What does it mean for SaaS security

Explore NIST SP-800-207 and its implications on SaaS security. Learn how adopting a Zero Trust approach can safeguard your sensitive data effectively and mitigate risks.

Hen Amartely

min read

Jun 17, 2024

Box Security: What’s Built in and What Needs to Be Added

Which Box security features are inherent & in which areas must supplementary solutions be integrated to achieve complete protection for your content assets and applications?

Hen Amartely

min read

Jun 13, 2024

Cracking the Challenges of ITDR in the SaaS Environment

User identity masking complicates SaaS ITDR (identity threat detection and response). Discover why and how to effectively prevent and mitigate various SaaS identity threats.

Hen Amartely

min read

Jun 5, 2024

How to Strengthen Your Dropbox Security: From Accounts to Assets

Learn effective strategies to enhance Dropbox security, addressing common concerns and preventing potential security breaches with proactive measures.

Hen Amartely

min read

May 29, 2024

SSPM vs CASB: How DoControl Leaped Over the Chasm

Wondering about SSPM vs CASB? Here, we define the difference, trace our transition, and explain why it matters in today's evolving cybersecurity landscape.

Hen Amartely

min read

May 21, 2024

Top Data Breach Attack Methods: Credentials and Identities

Explore the landscape of prevalent credential-based cyber threats and safeguard your business effectively from identity-driven breaches in 2024.

Hen Amartely

min read

May 14, 2024

The 3 Big Issues that SaaS Identity Risk Management Must Address

Discover the triad of key SaaS identity challenges, their looming perils to your ecosystem, and the vital role of SaaS identity risk control in averting harm.

Hen Amartely

min read

May 9, 2024

DoControl Recognized in Forrester’s The Insider Risk Solutions Landscape, Q2 2024

DoControl is highlighted in Forrester's latest report on insider risk solutions, offering invaluable insights for security professionals aware of the unique security risks posed by insiders.

Hen Amartely

min read

May 6, 2024

Will Your SSPM Security Prevent Configuration Drift?

Uncover the vital threat posed by SaaS misconfigurations and grasp the essentials your SSPM security setup requires to fend off configuration drift effectively.

Hen Amartely

min read

May 3, 2024

Does Your Data Loss Prevention Technology Fit Your Data Threats?

Explore how to tailor your data loss prevention technology to match your organization's risk factors, data types, and storage locations for complete data protection.

Matt Dubreuil

min read

May 2, 2024

Securing Your Data Amidst Threats: Insights from the Dropbox Breach

In the realm of digital security, the recent breach at Dropbox highlights the perpetual battle against cyber threats and the critical need for proactive defense strategies.

Hen Amartely

min read

Apr 29, 2024

Will Your SSPM (SaaS Security Posture Management) Protect You From Bad Actors?

Discovering a robust SaaS security posture means safeguarding your data, identities, and systems; assess if your SSPM truly meets these crucial criteria.

Hen Amartely

min read

Apr 21, 2024

Why Sensitive Data Discovery Tools are Wrong More Often Than You'd Like

Discover why sensitive data discovery tools often trigger false alarms, causing frustration for InfoSec teams. Learn why this happens and how to find tools for accurate detections.

Hen Amartely

min read

Apr 16, 2024

Are These 3 Critical Types of Zoom Vulnerability Endangering Your Organization?

Learn about the three primary types of Zoom vulnerabilities: in-meeting, data storage, and system access risks. Safeguard your organization effectively against these threats.

Hen Amartely

min read

Apr 9, 2024

These 5 SaaS Access Control and Management Mistakes Could Harm Your Business

SaaS solutions are integral for workflows, granting anytime access to critical data. Yet, without robust SaaS Access Control Management, businesses face significant security risks.

Hen Amartely

min read

Apr 5, 2024

What to Learn About Protecting Your SaaS from the Midnight Blizzard Breach of Microsoft Security Incident

Discover key insights on SaaS system protection post the recent Microsoft security incident by Midnight Blizzard. Explore OAuth app security, test environments, and more.

Adam Gavish

min read

Mar 26, 2024

SaaS Security: Why Standard Data Security Doesn’t Work for SaaS Apps

Learn why standard data security isn't enough for SaaS apps. As SaaS adoption accelerates, IT grapples with distinct security challenges. Dive into our analysis for insights.

Hen Amartely

min read

Mar 22, 2024

Battling Insider Threats: Can Your Business Afford a $4.75 Million Fine?

Montefiore Medical Center faces $4.8 million in fines from a data breach caused by insider threats, urging all businesses to prioritize security measures.

Hen Amartely

min read

Mar 18, 2024

CASB vs SASE + CASB: The Winner Isn’t What You Might Expect

Analyzing the disparities between a dedicated CASB and SASE, encompassing architecture, functionality, deployment, and threat detection methodologies.

Hen Amartely

min read

Mar 14, 2024

Salesforce Security: Three Major Threats and How to Protect Your Data

Protecting your business' sensitive data through robust Salesforce security measures is crucial, shielding it from cyber threats and preserving your company's reputation.

Hen Amartely

min read

Mar 12, 2024

Understanding SaaS Security Risks in 2025

Explore the critical SaaS security risks and vulnerabilities, and discover effective mitigation strategies. Gain essential insights to proactively safeguard your digital assets.

Hen Amartely

min read

Mar 7, 2024

Will the Microsoft CASB Catch Your SaaS Security Threats in Time?

Explore the pivotal role of CASBs in ensuring cloud security and unveil key facets of seamlessly deploying a Microsoft CASB solution for optimal protection and efficiency.

Hen Amartely

min read

Mar 4, 2024

Mastering Slack DLP: Safeguarding Data in Real-Time

Explore how Slack DLP guarantees secure data sharing, preventing leaks and breaches. Acquire insights into advanced measures and best practices for effective protection.

Hen Amartely

min read

Feb 29, 2024

How Well Does Microsoft Insider Risk Management Protect You From Insider Threats?

Assessing Microsoft Insider Risk Management: Exploring its efficacy in safeguarding enterprise data and identifying where it may fall short in comprehensive protection strategies.

Hen Amartely

min read

Feb 26, 2024

Slack Security Concerns: Mitigating Risks in Team Communication

Addressing Slack security concerns: Discover how to safeguard your team's communication, mitigate risks, and protect sensitive information effectively and proactively.

Hen Amartely

min read

Feb 22, 2024

How to Secure Google Drive: The InfoSec Team’s Checklist

Explore this comprehensive checklist detailing practical steps on how to secure Google Drive accounts, assets, and applications effectively within your organization.

Hen Amartely

min read

Feb 19, 2024

How Much Does Your SaaS Data Security Take the “End User Factor” Into Account?

Explore three categories of threats to your SaaS data security stemming from human end users and human error, along with actionable strategies for risk reduction.

Hen Amartely

min read

Feb 16, 2024

Google Drive Access Permissions: Streamlining Collaborative File Sharing

Google Drive Access Permissions facilitate effortless teamwork, govern file sharing securely, and uphold data integrity with accuracy, efficiency, and user-friendly controls.

Hen Amartely

min read

Feb 13, 2024

Securing Your Cloud: SaaS Security Best Practices

Boost your cloud service with our essential SaaS security best practices checklist—detailed, comprehensive, and indispensable for significant enhancement.

Hen Amartely

min read

Feb 9, 2024

Should You Go With a SaaS App-Native or Third-Party CASB Solution?

Consider the advantages of a native CASB solution from your SaaS vendor versus an independent 3rd-party provider - and other crucial considerations when choosing a CASB.

Hen Amartely

min read

Feb 5, 2024

Why CASB Security is Mission Critical for Your Business

Discover the CASB security for strong cloud defense. Protect digital assets with advanced measures. Explore further securing your cloud environment.

Hen Amartely

min read

Jan 31, 2024

What Works and What Doesn’t to Ensure Microsoft 365 Security on the Enterprise Level

Enterprises need robust Microsoft 365 security for Teams, Sharepoint, OneDrive, and beyond. An enhanced analysis of Defender for Cloud Apps is crucial for comprehensive protection.

Melissa Garcia

min read

Jan 19, 2024

Is Google Drive Secure?

Discover everything you need to know about Google Drive security: admin & user responsibilities, protections, compliance considerations, and effective strategies to help organizations secure their data effectively.

Hen Amartely

min read

Jan 9, 2024

Zoom Security: How to Protect Your Data and Recordings

Find out how to enhance Zoom security, safeguard your data and recordings against unauthorized access, and avoid data leakage with effective best practices and robust features.

Hen Amartely

min read

Jan 5, 2024

How to Protect Your Organization Against SaaS Data Breaches

SaaS platforms increasingly attract data breaches. Discover why these systems face higher risks and learn strategies to safeguard your organization's data.

Hen Amartely

min read

Dec 27, 2023

Slack Security: Top Risks & Best Practices for Collaboration

Discover strong Slack security measures: Implement access controls, encryption, and threat safeguards. Enhance workspace security for elevated collaboration.

Hen Amartely

min read

Dec 17, 2023

Fortifying Digital Defenses: The SaaS Security Platform (SSP)

Discover comprehensive defense through our advanced SaaS Security Platform. Secure your digital assets, bolster data privacy, and efficiently fortify against cyber threats.

Hen Amartely

min read

Dec 15, 2023

Strengthening Your Business: Mastering SaaS Ecosystem Security

Strengthen your business resilience by fortifying SaaS ecosystem security. Explore the advantages, success stories, and key insights for a secure digital transformation.

Hen Amartely

min read

Dec 14, 2023

DoControl Included in The Forrester Wave™: SaaS Security Posture Management, Q4 2023

DoControl Included in The Forrester Wave™: SSPM, Q4 2023

Hen Amartely

min read

Nov 22, 2023

Data Protection vs Data Security: Understanding the Key Differences

Examine subtle distinctions among data protection, data security, data privacy, considering significance, optimal approaches, legal facets for improved data governance.

Adam Gavish

min read

Nov 6, 2023

Latest Okta breach is a wake up call for SaaS Data Security

Data Security remains the last layer of defense against attackers overcoming the device, identity, and network layers

Adam Gavish

min read

Aug 22, 2023

DoControl Customers Say Goodbye to Underperforming CASB/DLP

Matt Dubreuil

min read

Aug 14, 2023

DoControl Launches Free Trial for Amazon Web Services Customers

Customers can sign up on the AWS Marketplace to understand their SaaS threat models

Adam Gavish

min read

Jul 31, 2023

DoControl Named in 2023 Gartner® 2023 Hype Cycle™ for Data Security

What's Gartner Hype Cycle report? What it means for SaaS Security Platforms?

Adam Gavish

min read

Jul 11, 2023

What is a SaaS Security Platform (SSP)?

Gilad Zafran

min read

Jun 28, 2023

Mapping SaaS Security Alerts to MITRE ATT&CK

Corey O'Connor

min read

May 31, 2023

A Deep Dive Into Insider Risk Management

Corey O'Connor

min read

May 26, 2023

DoControl Included in Forrester’s “The SaaS Security Posture Management Landscape, Q2 2023”

Corey O'Connor

min read

May 24, 2023

24% of 3rd Party Artificial Intelligence (AI) Apps Require Risky OAuth Permissions

Tal Mandel Bar

min read

May 3, 2023

DoControl + JIRA: The One-two Combo You Didn’t Know You Needed

Adam Gavish

min read

May 2, 2023

RSA Conference (RSAC) 2023: A DoControl Recap

Leya Ptiha

min read

Apr 17, 2023

Preventing Sensitive SaaS Data Loss through RegEx Scans

Corey O'Connor

min read

Apr 11, 2023

What is SaaS Security? Defining an Evolving Marketing and Providing Best Practices

Adam Gavish

min read

Mar 30, 2023

It’s 3/30/2023 – Do You Know Where Your Data Is?

Corey O'Connor

min read

Mar 14, 2023

Customer Spotlight: How Finaro Leverages DoControl to Prevent PCI Data Leakage

Corey O'Connor

min read

Mar 1, 2023

The SaaS Security Threat Landscape Data Report: Modern Businesses are Struggling to Grapple with SaaS Risk Exposure

Corey O'Connor

min read

Feb 13, 2023

Breaches and the Delicate Dance Between Privileged Credentials and SaaS Applications

Corey O'Connor

min read

Feb 10, 2023

Customer Spotlight: How DoControl Provides CHEQ Security Full Visibility Their SaaS Application Estate

Adam Gavish

min read

Jan 25, 2023

The SaaS Security Market: What to Expect in 2023

Guy Rosenthal

min read

Jan 18, 2023

Shadow Applications: A Significant Risk Hidden in Plain Sight

Corey O'Connor

min read

Jan 9, 2023

DoControl is now Health Insurance Portability and Accountability Act (HIPAA) Compliant

Hen Amartely

min read

Dec 14, 2022

What’s Missing From Annual Security Awareness Training?

Corey O'Connor

min read

Nov 30, 2022

DoControl Named in Two 2022 Gartner® Emerging Tech Impact Radars

Corey O'Connor

min read

Nov 15, 2022

What is a CASB and How Does it Integrate with DLP?

Tal Mandel Bar

min read

Oct 6, 2022

DoControl + Zoom: Protecting Business-Critical Recorded Assets

Tim Davis

min read

Sep 29, 2022

Proxying Your Way to SaaS Security? There’s a Better Approach!

Corey O'Connor

min read

Sep 19, 2022

DoControl Wins Prestigious SINET16 Innovator Award

Corey O'Connor

min read

Sep 16, 2022

Uber’s Internal Network Business-Critical SaaS Data Compromise

Gilad Zafran

min read

Sep 9, 2022

DoControl Actionable Alerts: Your Dedicated Private Security Team

Corey O'Connor

min read

Aug 29, 2022

How DoControl Ensures the Success of Your Security Team

Corey O'Connor

min read

Aug 17, 2022

DoControl Named in Two 2022 Gartner® 2022 Hype Cycle™ Reports

Adam Gavish

min read

Jul 20, 2022

Scaling Our Organization to Meet Customer Demand

DoControl is very excited to announce that Lisa Yackiminie has joined as Head of People.

Guy Rosenthal

min read

Jul 13, 2022

OAuth SaaS Applications: Discover. Correlate. Remediate. Repeat.

Tim Davis

min read

Jul 6, 2022

How to Choose the Right CASB Tool to Secure SaaS Data

Corey O'Connor

min read

Jun 8, 2022

Insider Risk Management: Security Starts Within

Adam Gavish

min read

Jun 1, 2022

DoControl Wins Globee®: 17th Annual Information Technology World Award

Corey O'Connor

min read

May 19, 2022

DoControl: 2022 Gartner® Guide for Insider Risk Management Solutions

Corey O'Connor

min read

May 5, 2022

Modernizing DLP and CASB with DoControl

Liel Ran

min read

Apr 28, 2022

Yet Another Major Supply Chain Attack: GitHub

Corey O'Connor

min read

Apr 21, 2022

The Top 10 SaaS Security Risks Modern Businesses Face

Adam Gavish

min read

Apr 14, 2022

DoControl raises a $30M series B round to redefine SaaS Security

Corey O'Connor

min read

Apr 7, 2022

Harnessing Business Context to Enable a Secure Workforce

Orr Semmel

min read

Mar 31, 2022

Some of the Most Popular Use Cases for SaaS Data Access Control since our Security Workflows Release

Corey O'Connor

min read

Feb 22, 2022

How Okta's Businesses at Work Report Impacts SaaS Security Strategy

Adam Gavish

min read

Feb 14, 2022

DoControl Appoints Kobi Afoota as its Head of Information Security

We are excited to announce that Kobi Afoota, former CISO at Kornit Digital (NASDAQ: KRNT), has joined DoControl as Head of Information Security. At DoControl, Kobi will be responsible for leading security and risk management initiatives, application security, and compliance readiness.

Ilana Yakobi

min read

Feb 10, 2022

Enabling Customer Success at DoControl- a Mother’s Perspective

Guy Rosenthal

min read

Jan 27, 2022

Harnessing SaaS Data to Automatically Mitigate Security Risks

Corey O'Connor

min read

Jan 10, 2022

Looking Back and Looking Forward on SaaS Security

Corey O'Connor

min read

Dec 16, 2021

3 Top SaaS Apps & How to Secure them: Google Workspace, Slack and Box

Shiri Shilo

min read

Dec 3, 2021

Employee Spotlight: UX Designer, Shiri Shilo

I recently helped to design and maintain a new concept of risk analytics page which will help our users to accomplish greater visibility and remediation of their SaaS apps.

Orr Semmel

min read

Nov 15, 2021

Employee Spotlight: Senior Product Manager, Orr Semmel

The first thing that drew me to DoControl was the amazing set of people who I knew were working there.

Avner Schwartz

min read

Oct 14, 2021

Employee Spotlight: Senior Software Engineer Avner Schwartz

Over the last few years, I was offered to join a number of early stage startups. While the teams were always technologically savvy, I felt all of them were lacking one of the following:

Adam Gavish

min read

Oct 1, 2021

Your 3rd Party Collaborators Share Your Company's Data with 4th Parties

Adam Gavish

min read

Sep 24, 2021

Weather Forecast: Cloudy with High Chances of SaaS Data Breaches

Adam Gavish

min read

Sep 17, 2021

How HR and Security Teams Can Work Together to Stop Insider Threats

Adam Gavish

min read

Sep 3, 2021

Data Breach in NYC Schools: Refine Data Access to SaaS Applications

Adam Gavish

min read

Aug 27, 2021

Native SaaS Security Features Not Enough to Solve Business Use Cases

Adam Gavish

min read

Aug 20, 2021

Consequences of Enforcing Multi-Factor Authentication

Adam Gavish

min read

Aug 13, 2021

DoControl’s First Black Hat Conference was a Success

Adam Gavish

min read

Jul 23, 2021

Controlling Data Access One SaaS App at a Time Leaves Security Gaps

Adam Gavish

min read

Jul 16, 2021

Deleting Users Through An Identity Provider Isn’t Enough

Adam Gavish

min read

Jul 9, 2021

The Hidden Danger of External Sharing via SaaS Apps

Adam Gavish

min read

Jul 2, 2021

Insider Threats to Data in SaaS Applications

Adam Gavish

min read

Jun 25, 2021

MITRE ATT&CK and SaaS Security

Adam Gavish

min read

Jun 24, 2021

DoControl Celebrates Its First Anniversary

Adam Gavish

min read

Jun 18, 2021

Automated Security Workflows for SaaS Applications

Streamline SaaS security with DoControl's no-code automated workflows. Protect data, enforce policies, and prevent breaches across all SaaS applications.