Securing the Modern Mesh of Third-Party API Integrations

Over the past few years, as part of the expanding API ecosystem, we’ve witnessed a rise in the number of SaaS-to-SaaS connections and third-party integrations to business applications via API tokens, OAuth apps, and no/low code platforms. These integrations are driven by end users and citizen developers and result in a growing supply chain access risk exposure. In this talk, we will analyze how these integrations are built and established, creating the modern Business Application Mesh. For each integration method, we will describe the benefits and risks associated with the related tech stack. In addition, we will analyze how attackers were able to successfully leverage such access to conduct attacks during the Solarwinds campaign and numerous consent phishing campaigns. Lastly, we will provide guidance on how organizations can review their third-party integrations and recommend quick=win steps to reduce this attack surface.

About the Speaker:
Yoni Shohet is a serial cybersecurity entrepreneur and the co-founder and CEO of Valence Security. Prior to Valence, Yoni co-founded SCADAfence, a pioneer in industrial IoT cybersecurity. Yoni received his BSc in Mathematics at the age of 19 before serving in the Israel Defense Forces, where he served as a cybersecurity team leader and project manager at one of Israel’s most esteemed military intelligence units.

SANS Cloud Security focuses the deep resources of SANS on the growing threats to The Cloud by providing training, GIAC certification, research, and community initiatives to help security professionals build, deploy and manage secure cloud infrastructure, platforms, and applications.

Follow us on social:
SANS Cloud Security on Twitter: @SANSCloudSec