AppOmni&UserEvidence：2025年软件即服务（SaaS）安全态势报告（英文版）（29页） .pdf

1、withThe State ofSaaS Security2 0 2 5 R e p o r t02Table of ContentsAppOmniTable ofContents Foreword Executive SummarySection 1:The SaaS Surge:Growing Usage But Rising Security IncidentsSection 2:Sanctioned Secure:The Illusion of Oversight in SaaS EnvironmentsSection 3:The SaaS Security Org Chart:Who

2、 Owns WhatSection 4:Good Enough or Just Lucky?The Cost of SaaS Security TradeoffsSection 5:Secure in Theory.Breached in PracticeSection 6:AI and the New SaaS Security AgendaKey Recommendations for 2026 and BeyondFinal ThoughtsMethodology&DemographicsAbout AppOmni0304069121619212325272903ForewordAppO

3、mniForewordWere proud to share AppOmnis third annual The State of SaaS Security Report.SaaS continues its enterprise transformation with a compounded annual growth rate of 20%between 2025 to 2032.The stakes for securing these platforms have never been higher.Today,nearly every organization relies on

4、 SaaS to operate,and attackers know it.In the past year,SaaS security,together with concerns around the secure use of AI,has moved from a niche security initiative to a boardroom imperative.In its 2024 letter,explicitly named SaaS vulnerabilities as an area of utmost importance,noting the industrys

5、increasing dependence on third-party providers and the growing threat of SaaS attacks.The called out a doubling of breaches involving third-party applications stemming from misconfigured SaaS platforms and unauthorized integrations,particularly those exploited by threat actors through scanning and c

6、redential stuffing.SaaS is now one of the most actively targeted layers of the enterprise attack surface,and yet,it remains one of the least proactively defended.Adversary activity in SaaS apps prompted the governments watchdogthe Cybersecurity and Infrastructure Security Agency(CISA)to issue a Bind