As we have covered or mentioned many times, G Suite permissions can open up your whole organization to people you do not know, creating security vulnerabilities.
One such example: the time company executives gave full access to their inboxes to a Russian gaming site , simply by “signing in with Google” as they normally would.
So what is G Suite changing?
New Third Party App Verifications; Block Installations
- Apps must be verified to ensure compliance with new privacy and security requirements.
- Anything you or employees install before July 8 will continue to work. Then, G Suite will block new installs for unverified third-party apps that access Gmail data — unless you whitelist them in the Admin console.
Are You Still At Risk? Yes!
Many employees will still have risky permissions that will persist despite this change.
Risky apps will still exist, and G Suite apps will still be seen as an attack vector.
Why? First, it’s a large user base and a large app market. Typically bad actors follow crowds.
Secondly, the sense of security that Google’s approval brings may prompt the sneakiest of black hats to use less obvious methods than a simple Docs-lookalike phishing attack. The attacks necessarily must become more sophisticated.
How Will You Manage Your G Suite App Environment, Since Risks Will Persist?
Alpin helps companies manage G Suite permissions though important tools like:
- Comprehensive discovery of apps, permissions, and users to know your SaaS environment.
- Permission and app risk analysis and scoring to save you time investigating hundreds or thousands of apps.
- Blacklisting to explicitly block particularly bad apps.
If you’re looking to get more serious about SaaS security with G Suite, we have even more security and automation features to show you. Contact us for a demo or start a 14-day trial. You’ll see how Alpin can work for you. Get started by emailing firstname.lastname@example.org.