A quarter (81%) of medium businesses and 78% of large businesses store encrypted files on Google Drive/Workspace. Additionally, 61% of companies have employees who share company-owned assets via personal email.
The findings are Do Control‘s latest Software as a Service (SaaS) Security Threat Landscape report suggests that manual tracking of sensitive assets can be more complex than previously imagined.
The report also reveals that on average, about 224,000 assets are shared externally in SaaS applications for midsize companies (an average of 9 external actors per employee).
According to DoControl CEO Adam Gavish, the figures related to large enterprises are equally concerning, with an average of about 241 third-party domains accessing SaaS assets.
“We all rely on SaaS applications to improve productivity and collaboration, but few have stopped considering the sheer number of assets that move in and out of these tools every day,” says Gavish. commented on the survey results.
Case in point, 67% of all companies surveyed by DoControl said they have employees of five years or more with access to assets stored on Google Workplace. Among large enterprises, Google had an average of 81 third-party application integrations (of which an average of 27 had data access and 9 were over-privileged).
“Corporate Consider security more and more This means that the risk of a poor SaaS security posture can undermine business outcomes,” Gavish added. “The goal of this report is to quantify and explain the disruption so businesses can better understand their risk exposure and act accordingly to regain control of their SaaS assets.”
