SaaS Security

Vorlon Blog

All articles

The Vercel Incident: OAuth Tokens and the AI Supply Chain Attack

Anodot Breach Exposes Snowflake Customer Data, Including Rockstar Games

Five Things RSAC 2026 Taught Us About Securing AI Agents

DataMatrix™: Vorlon's Patented Approach to Agentic Ecosystem Security

Where Cloud Security Stops and SaaS Risk Begins: Understanding Wiz’s Coverage Boundaries

Salesforce Shield vs. Ecosystem Security: Where Platform Protection Ends

451 Research: Why AI and SaaS Security Are Converging

Mandiant Research on ShinyHunters Vishing: Why MFA-enabled Doesn’t Mean Protected

Gartner Analysis on How SaaS Ecosystem Security Risk Maps to Vorlon’s Approach

Application Security Assessment: How to Calculate the Risk

How the Gainsight Breach Exposed a Growing SaaS Supply Chain Threat

IBM's 2025 breach report: How bad is the AI governance gap?

What the Salesloft Drift breaches reveal about 4th-party risk

Vorlon Brings SaaS and AI Security to Hou.Sec.Con 2025

Salesloft Drift Breach: What Happened & How to Protect Yourself

Deloitte Features Vorlon's GenAI-Enabled Security Solution

ShinyHunters Exploits Salesforce, Detection and Response Tips

Elevating Security Operations with the Vorlon and Google Security Operations Integration

Unifying SaaS and AI Security: Why Vorlon Is Looking at the Forest, Not Just the Trees

Vorlon MCP Server & DataMatrix Technology

Vorlon Is Headed to Black Hat USA 2025 — See You in Startup City!

Commvault Metallic Microsoft 365 Breach & What to Do Next

The Pearson Breach: How It Happened and Lessons Learned

Rand-User-Agent Attack: How It Happened & How to Protect Yourself

Verizon DBIR Reveals Third-Parties Involved in 30% of Breaches

Introducing DataMatrix™: Cracking Open the Black Box of SaaS Security

Vulnerabilities Gonna Vulnerability—And Third-Party Risk Won’t Manage Itself

Oracle Health Breach: What Security Teams Need to Know

Compromised GitHub Action Targets Coinbase in SaaS Security Breach

New OAuth Phishing Attack on GitHub: What Security Teams Must Know

How Silk Typhoon Exploits IT Supply Chains and What You Can Do

Vorlon, Securing Financial SaaS Ecosystems, Sponsors FS-ISAC 2025

Discover Vorlon at RSAC 2025: A New Approach to SaaS Ecosystem Security

Grubhub Data Breach: A Costly Meal for Customers, Drivers, and Merchants

Meet Vorlon at ViVE 2025: Addressing Third-Party Risks in Healthcare IT

The Postman Data Leak - Exposing the Hidden Risks of API Development

Otelier Breach: When Hotel Management Checks Out

Snowflake Breach Response Playbook

The Stiiizy Data Breach: Lessons for Mitigating Third-Party Security Risks

BeyondTrust Breach: Implications for U.S. Treasury and beyond

Better Together For All Parties: Salt Security and Vorlon

Capgemini's Data Disaster: When Hackers Turned Consulting into Chaos

Fortinet Hit by Cyber Attack: Third-Party Breach Affects Asia-Pacific Customers

Avis Car Rental Breach: Looks Like Cars Weren't the Only Thing Avis Was Giving Away

Better Together: Vorlon + Tines

Securing More with Less: Navigating Cybersecurity in a Shrinking Budget Era

Dick's Sporting Goods Breach - And How Vorlon Can Help

HealthEquity Breach - And How Vorlon Can Help

NYTimes Github Breach - And How Vorlon Can Help

CDK Global's Breach - And How Vorlon Can Help

Under the Hood: Examining Toyota’s Recent Data Breach

Vorlon v2.0 Summary and Highlights

Behind the Microphone: Insights from Our CISO Series Podcast Episode

Bitbucket Springs a (Secrets) Leak

PRESS RELEASE: SANS Institute Hails Vorlon as Impressive Solution

Mike Cioffi Joins Vorlon as VP of Customers

UK Ministry of Defence: “Third-Parties Are the Weakest Link, Goodbye”

"I saw the [Dropbox] Sign and it opened up my eyes to continuously monitoring our third-party apps"

Recommended Permanent(e) Changes for Healthcare Organizations: The Kaiser & Change Healthcare Breaches

More Than Just A Duo When A Third-Party Breach Hits

A Si(xth)Sense For Breaches

Press Release: Vorlon Raises Series A from Accel with $15.7 Million Total in Funding for Proactive Third-Party API Security

How Doers Get More Done: What We Can Piece Together From Home Depot's Third-Party Breach

Float Like a Butterfly, Sting Like An OWASP

Cracking the Code: Navigating the Aftermath of AT&T's Mega Breach

More Than Shifting Left: Why Relying Solely on Third-Party Vendors to Get It Right Isn’t a Security Solution

Unwind and Unplug: Relaxing Through the Art of Cybersecurity

The Dawn of Midnight Blizzard

Unpacking the American Express Third-Party Breach

Optum(ize) Your Security!!!

Behind the Breach: Unraveling Bank of America's Third-Party Data Breach

Cloudy With a Chance of Breaches

You Say Goodbye, and I Say Trello

Coffee at Rest, Coffee in Motion

HealthEC's Not-So-EZ Data Breach

Xfinity's Infinite Challenge: Citrix Bleed

Lessons Learned: Navigating the 2023 Data Breach Landscape

Elf On the Shelf Reports All the Breaches

Deals for a Dollar! Until a Data Breach Comes to Holler

O Canada: The Great Maple Leaf Cyber Mishap Unfolds

A Hard Pill to Swallow: Truepill's Data Breach

Giving Thanks: Why CISOs Owe a Feast of Gratitude to Their Security Teams

Sumo Logic's Guest List Gets a Surprise: An Uninvited Third-Party Crasher

The Push Notification Heard ‘Round the World: Okta’s Security Breach

Oops, Your Ancestors Have Been Hacked! A Closer Look at the 23andMe Data Breach

October is Cybersecurity Awareness Month!

Betting Against the House: MGM's Unlucky Cyber Streak

Navigating the Digital Waves Safely: A Guide to Secure Web Surfing

Duolingo, Looks Like You Missed Your API Security Lesson Today!

Rhysida Ransomware: A Sinister Crawl from the Undergrowth

Simplifying the National Cybersecurity Strategy Implementation Plan (NCSIP)

Data Breaches Unveiled: Valuable Lessons for a Secure Future

I Like to MoveIt MoveIt