Subscribe to RSS - SaaS


Innovation is the icing, but what about the cake?

Submitted by Ofer Shezaf on 28 January 2013 - 12:20am

In recent weeks I have met several companies focusing on innovating security intelligence. Those encounters brought up an interesting challenge facing such innovations: in most cases innovators have a good idea but find it too expensive to build the required infrastructure. There is no use for an icing for a cake you cannot bake after all.

What are the possible solutions? How productizing innovation actually works? can it be improved?

Security Must Be Clouded

Submitted by Ofer Shezaf on 23 February 2012 - 9:48am

My recent posts have been introspective, reflecting on the state of information security. I feel the urge, especially now a few days before RSA, to venture into the future rather than address the present. Since I am shy of future telling, I will focus on a call for action: what I think should happen in information security in the coming years. Next week on the RSA exhibition floor, we will all see if 2012 will see the beginning of those trends.

Saying that, my first post is about an area that I think will be center stage this year: security in the cloud.

While we have no public record of an exploit in this case, it seems that the mare discovery of vulnerabilities in sage new SaaS (software as a service) offering created so much damage to classify it as an incident.

Sage is the leading provider of accounting software in the UK and it was about to launch a trendy small business SaaS offering. However as ZDnet reports, serious security flaws were discovered in the public beta and the company has to call off the launch. Who discovered the issues? naturally the competition. Duane Jackson, the CEO of a tiny rival company reported them on his blog

Incident Outcome: 
Attacked System: