Disney Slack History 1TB worth stolen by hacktivist/insider, this following AT&T and Ticketmaster Snowflake/Okta breach that exposed hundreds of millions of users call logs and ticket purchasing habits. https://lnkd.in/gwBrs7Aa
I like to make 2 points about these massive Fortune 500 leaks/hacks:
1. In order to export 1TB (much more unzipped ) of Disney Slack history with hydrated files, the insider needs Slack Workspace Admin or Owner access AND turn off the token expiry to hydrate files/attachments/images. The insider was actively involved in doing this, it takes a while to hydrate 1TB worth of files, as slack text would would only be a couple of gigs zipped.
2. SaaS need to stop their gimmicky two-tier pricing model that puts a critical security measure (SAML/OAuth2 SSO) only in the top or enterprise tier. SaaS needs to be managed by SSO like Okta, Auth0, or Cognito, because it conforms all enterprise SaaS tool user provisioning and sign-in to a single pane of control, and you get tools like geo-ip restriction login of privledged user groups (admins), MFA bells and whistles like requiring Authenticator over SMS, etc. The SaaS purposeful neutering of feature that already is "shipped" is as old as time or when the first Sales exec came up with this brilliant strategy: Car manufactures will ship cars fully loaded with features, and turn off or cover the button and pass them on as dealer options. Printers and computers and other electronic devices contain all features possible, with options buttons covered for 'low tier' models. You cannot do this with SaaS security - the liability is too great, when these SaaS companies like Slack and Snowflake will have to testify in court that they willfully neutered security features in their products, essentially holding their own customers' security protection ransom. Security Focus is a habit that needs to start at startup with 10 users - it cannot wait until you're a Fortune 500 and finally experience your first big cyberransom, and reactively put in SSO+MFA.
So much fun last night, looking forward to the next one.