03 5625 3917

Data security

The “Zombie” SaaS Audit: Finding the 3 Apps Your Former Employees Still Access

The Zombie Account SaaS Audit: Finding the 3 Apps Your Former Employees Still Access

Someone leaves the company on a Friday. By Monday, their email account is disabled, and their laptop is back in the pile.

What nobody checks is their login to the project management tool they signed up for in Q3, the cloud storage folder they shared with a contractor, or the CRM access they still have from two roles ago. 

Three months later, those sessions are still active.

This is how zombie accounts form. nNot through negligence, but through an offboarding process built around corporate IT assets that no longer reflects how people actually use software. 

The average company now runs more than 100 SaaS applications. Most offboarding checklists were written when there were three.

What a Zombie Account Actually Is

A zombie account is an active login that belongs to someone who no longer works for you. The name is informal. The risk is not.

What makes zombie accounts particularly dangerous is that they are valid credentials.

There is nothing to detect. The access was granted intentionally, and the system has no reason to question it. If a former employee walks back in through that door, or if their credentials are compromised after they leave, the access is there waiting.

Industry research finds that 50% of organisations have discovered former employees still accessing SaaS applications months after their departure date.

For most of those organisations, the discovery was accidental rather than the result of a deliberate audit.

Read More »
Stop the Bleeding: How Revoking Admin Rights Eliminates Support Tickets

Stop the Bleeding: How Revoking Admin Rights Eliminates Support Requests

The most time-consuming ticket in your queue is rarely a hardware failure. It’s the PC infection that started when a user installed something they shouldn’t have been able to. Or it’s the broken configuration left behind after someone changed a setting IT can’t trace.

Local administrator rights (the ability to install software, modify system settings, and override security controls) are given to end users far more often than the risk warrants. 

The usual reason is efficiency. 

The practical result is the opposite. Machines that drift from baseline, infections that spread before they are caught, and remediation requests nobody planned for. Revoking local admin rights directly removes the root cause of most of those requests.

Read More »
The "Legacy Debt" Audit: Identifying the 3 Oldest Risks in Your Server Room

The “Legacy Debt” Audit: Identifying the 3 Oldest Risks in Your Server Room

The most dangerous thing in a server room is often the phrase, “Don’t touch that.”

It’s usually said with a half-joke and a grimace. It refers to the old box that “still works”, runs something important, and has survived so many fixes and workarounds that nobody feels confident changing it anymore.

That’s legacy debt. 

Not just “old tech”, but old tech that’s become a dependency. It’s the kind that quietly accumulates risk until it turns into downtime, security exposure, or an emergency upgrade at the worst possible time.

A legacy debt audit is the fast way to bring that risk back into the light.

Read More »
LinkedIn "Social Engineering": Protecting Your Staff from Fake Recruitment Scams

LinkedIn “Social Engineering”: Protecting Your Staff from Fake Recruitment Scams

A fake recruiter message is one of the cleanest social engineering tricks around because it doesn’t look like a trick.

That’s why LinkedIn recruitment scams work so well inside real businesses. 

They don’t arrive as malware. They arrive as a normal conversation that nudges someone toward one small action: click this link, open this file, “verify” this detail, move the chat to a different app.

A few simple checks, a couple of hard-stop rules, and an easy way to report suspicious outreach can shut these scams down without slowing anyone down.

Read More »
The 2026 Guide to Uncovering Unsanctioned Cloud Apps

The 2026 Guide to Uncovering Unsanctioned Cloud Apps

If you want to uncover unsanctioned cloud apps, don’t begin with a policy. Start with your browser history.

The cloud environment most businesses actually use rarely matches the one shown on the IT diagram. It’s built through countless small shortcuts: a “just this once” file share, a free tool that solves one problem faster, a plug-in installed to meet a deadline, or an AI feature quietly enabled inside an app you already pay for.

In the moment, none of it feels like a problem. It feels efficient. Helpful.

Until it isn’t. Then you realise business data is scattered across tools you didn’t formally approve, accounts you can’t easily offboard, and sharing settings that don’t reflect the actual risk.

Read More »
How to Run a "Shadow AI" Audit Without Slowing Down Your Team

How to Run a “Shadow AI” Audit Without Slowing Down Your Team

It usually starts small. Someone uses an AI tool to refine a difficult email. Someone enables an AI add-on inside a SaaS app because it promises to save an hour a week. Someone pastes a paragraph into a chatbot to “make it sound better.”

Then it becomes routine.

And once it’s routine, it stops being a simple tool decision and becomes a data governance issue: what’s being shared, where it’s going, and whether you could prove what happened if something goes wrong.

That’s the core of shadow AI security.

The goal isn’t to block AI entirely. It’s to prevent sensitive data from being exposed in the process.

Read More »
Zero-Trust for Small Business: No Longer Just for Tech Giants

Zero-Trust for Small Business: No Longer Just for Tech Giants

Think about your office building. You probably have a locked front door, security staff, and maybe even biometric checks. But once someone is inside, can they wander into the supply closet, the file room, or the CFO’s office? In a traditional network, digital access works the same way, a single login often grants broad access to everything. The Zero-Trust security model challenges this approach, treating trust itself as a vulnerability.

For years, Zero Trust seemed too complex or expensive for smaller teams. But the landscape has changed. With cloud tools and remote work, the old network perimeter no longer exists. Your data is everywhere, and attackers know it.

Today, Zero Trust is a practical, scalable defense, essential for any organization, not just large corporations. It’s about verifying every access attempt, no matter where it comes from. It’s less about building taller walls and more about placing checkpoints at every door inside your digital building.

Read More »
The “Insider Threat” You Overlooked: Proper Employee Offboarding

The “Insider Threat” You Overlooked: Proper Employee Offboarding

Imagine a former employee, maybe someone who didn’t leave on the best terms. Their login still works, their company email still forwards messages, and they can still access the project management tool, cloud storage, and customer database. This isn’t a hypothetical scenario; it’s a daily reality for many small businesses that treat offboarding as an afterthought.

Many businesses don’t realise how much access departing employees still have. When someone leaves, every account, login, and permission they had must be carefully revoked. If employee offboarding is disorganised, it creates an “insider threat” long after the employee is gone. The risk isn’t always malicious, often, it’s simple oversight. Old accounts can become backdoors for hackers, forgotten SaaS subscriptions continue to drain funds, and sensitive data may remain in personal inboxes.

Failing to revoke access systematically is an open invitation for trouble, and the consequences range from embarrassing to catastrophic.

Read More »
The Server Refresh Deadline: Why Windows Server 2016’s End of Support Should Drive Your Cloud Migration Plan

The Server Refresh Deadline: Why Windows Server 2016’s End of Support Should Drive Your Cloud Migration Plan

Time moves fast in the world of technology, and operating systems that once felt cutting-edge are becoming obsolete. With Microsoft having set the deadline for Windows Server 2016 End of Support to January 12, 2027, the clock is ticking for businesses that use this operating system. 

Once support ends, Microsoft will no longer provide security updates or patches, leaving your business systems vulnerable. It’s not just about missing new features, continuing to use unsupported software significantly increases the risk of cyberattacks.

If your systems are still on Windows Server 2016, now is the time to plan your upgrade. With about a year until support ends, waiting until the last minute can lead to rushed decisions and higher costs.

Read More »
The Daily Cloud Checkup: A Simple 15-Minute Routine to Prevent Misconfiguration and Data Leaks

The Daily Cloud Checkup: A Simple 15-Minute Routine to Prevent Misconfiguration and Data Leaks

Moving to the cloud offers incredible flexibility and speed, but it also introduces new responsibilities for your team. Cloud security is not a “set it and forget it” type task, small mistakes can quickly become serious vulnerabilities if ignored.

You don’t need to dedicate hours each day to this. In most cases, a consistent, brief review is enough to catch issues before they escalate. Establishing a routine is the most effective way to defend against cyber threats, keeping your environment organized and secure.

Think of a daily cloud security check as a morning hygiene routine for your infrastructure. Just fifteen minutes a day can help prevent major disasters. A proactive approach is essential for modern business continuity and should include the following best practices:

Read More »

Looking for something else? You can navigate through our menu or use this search bar:

Search