What makes this even more precarious is that this setting is on by default. How many of your organization’s files have public sharing links? What kind of files are they? Do they contain sensitive information? Slack’s native admin console was not designed to deliver this kind of information it was not purpose-built for IT. If or when a user creates a public link to a file in Slack, how would you know? There’s no built-in alert for this action. But if sensitive or confidential files are publicly accessible, then you have data exposure problems on your hands-and you might never even be aware of it. They may not realize the full implications of their actions. All it takes is three clicks:Īn end user might do this with the best of intentions (e.g., to facilitate collaboration). Many IT professionals aren’t aware that end users can create public links to any files shared in Slack.īy creating a public link, anyone on the internet can then access that file and download it. End users can create public links to files
Here are five blind spots that you should be aware of: 1. In Slack, end users and admins can do (and view) some things that might surprise you. And SaaS apps give end users plenty of freedom and control, allowing them to take actions that IT is unaware of. This leads to blind spots for IT-areas where they have no visibility. SaaS is so new that many IT professionals have simply never encountered these data protection issues before. Indeed, this was not the employees’ fault, nor was it Slack’s.
It sounds innocuous, but by connecting the two apps, they exposed more than 100 GSA Google Drive accounts for half a year.īut as Network World points out, “This is not a security flaw in Slack - instead, it is a risk exposed by the combination of unfamiliar systems being used and managed by business users who are not security specialists familiar with the many regulatory and compliance-related rules around data protection.” In 2016, employees at 18F (a tech consulting team within the General Services Administration) shared Google Drive documents through Slack.
With six million daily users, it has surpassed $5 billion in market value.īut while its ability to reduce email and boost collaboration has made headlines, a few security incidents have also made the headlines.
Forbes called it the fastest growing workplace software ever. Slack, the wunderkind team messaging app, is on the up and up.
0 kommentar(er)
