The hidden risk of Compromised Tokens in SaaS Apps

The hidden risk of Compromised Tokens in SaaS Apps Webinar Image

In this recent webinar led by Thomas Lejars from Zygon and Thomas from Arsen, the discussion delved into the often underestimated risk of Compromised Tokens of SaaS account, particularly through phishing operations. The speakers emphasized the importance of sharing experiences and raising awareness about the real dangers of getting hacked and having SaaS apps compromised. They highlighted two main reasons why customers tend to underestimate this risk: the belief that the risk lies with the SaaS vendor and the misconception that SaaS apps are standalone products.

Key Figures:

Challenges in Managing SaaS Apps:

Organizations face numerous challenges in managing the growing number of SaaS apps used within their infrastructure:

  1. Visibility: Security teams often lack visibility into new sign-ups, making it difficult to maintain an accurate inventory of SaaS apps.
  2. Complexity: Implementing and understanding security measures for each SaaS app is time-consuming and relies on business users to roll out the necessary security measures.
  3. Training: Lack of proper training for employees on the risks of SaaS account compromise further exacerbates the problem.

Misconception of SaaS Apps as Standalone Products:

Many customers mistakenly believe that if one SaaS app is compromised, the risk is limited to that app alone. However, interconnectedness between SaaS apps and supply chain dependencies can lead to a cascading effect, where one hacked app can impact multiple others.

Methods of SaaS Account Compromise:

Several methods are commonly used by attackers to compromise SaaS accounts:

  1. Password Reuse: Users tend to create and reuse passwords across multiple platforms, making them vulnerable to brute force attacks.
  2. Low Password Entropy: Weak passwords make it easier for hackers to launch password spraying attacks.
  3. Consent Phishing: Users unknowingly grant high privileges to fake apps through consent phishing.
  4. Credential Harvesting: Phishing emails that trigger emotional responses like fear or urgency remain a significant risk.


Addressing the risks of SaaS account compromise requires a comprehensive approach. The combined solution offered by Aacen and Zygon automates SaaS account detection and helps bridge the gap between intended security measures and their actual implementation. By training users and targeting phishing simulations to specific SaaS apps, organizations can effectively mitigate the risks associated with SaaS account compromise.

In conclusion, the webinar shed light on the critical need for organizations to reassess their approach to SaaS security and take proactive measures to protect against the growing threat of SaaS account compromise. Stay tuned for more insights on this topic in our upcoming blogs and webinars.

Let's get you started

If SaaS Security is a relevant topic for you and your team, we want to hear from you. Let's schedule a demo together and discuss your current challenges securing the hundreds of apps used by your team.

Prefer to send an email directly? No problem! You can reach us at contact at Whether you have questions, suggestions, or just want to say hello, we're here to respond promptly to your emails.

"Zygon is going to improve our overall security posture by inventorying and controlling 90% of SaaS that usually remain uncovered by Security Teams."
Arnaud, CISO,  Large Global Group

More articles

Continue reading with these posts...