Last mentioned: Mar 22, 2026
Data Exfiltration
Sensitive data is siphoned via API calls, appearing as legitimate service-to-service traffic to bypass network security.
Lateral Movement
Using stolen tokens, attackers move from the compromised tool into the target's CRM, ERP, or email environment.
Token Harvesting
Attackers leverage existing OAuth permissions to harvest access tokens for core business systems.
Initial Access
Attacker compromises a low-security third-party SaaS tool via phishing or credential stuffing.
A comparison of cybersecurity leaders Okta and Zscaler reveals a divergence in growth trajectories as the industry shifts toward Zero Trust and AI-driven security. While Okta faces slowing revenue growth and valuation pressure, Zscaler maintains high-double-digit momentum and strong Rule of 40 performance.
Cybercriminals are increasingly targeting Software-as-a-Service (SaaS) supply chains, leveraging interconnected application ecosystems to bypass traditional perimeter defenses. This shift highlights a critical visibility gap in SaaS-to-SaaS (S2S) communications and OAuth permission management, turning third-party integrations into high-value attack vectors.
This page surfaces every story mentioning SaaS across our cybersecurity coverage. We track each entity's appearance over time so readers can trace how the narrative evolves — which developments are isolated incidents, which build into longer arcs, and which reframe how operators in the space think about the entity. Story selection uses the same multi-source verification gate applied across the rest of our coverage.
Read our editorial methodology for how we identify, deduplicate, and score entity references. Our glossary defines the technical terms used across stories on this page, and our trends index contextualizes individual developments against the longer-running cybersecurity beat. Cross-entity comparisons live on our compare view.
| What you see | What it tells you |
|---|---|
| Story count | Number of distinct stories where SaaS was a primary or referenced actor. |
| Recency clustering | Whether mentions are concentrated in a recent window (a news cycle) or distributed (a sustained arc). |
| Sentiment distribution | Aggregate sentiment of the stories mentioning this entity, weighted by impact score. |
| Cross-niche links | When the same entity surfaces in our sibling networks, we link to those views to enrich context. |