OAuth, guest accounts, and weak MFA drive SaaS risk
Overview
Organizations are increasingly using guest accounts to provide temporary access to contractors and partners. However, many of these accounts remain active long after their purpose has ended, posing risks to corporate data security. According to Kaseya’s 2026 SaaS Security Report, guest accounts made up 69% of monitored SaaS accounts in 2025, which is a significant rise of over 1.9 million accounts from the previous year. This surge indicates that guest accounts now outnumber licensed users, creating potential vulnerabilities. Companies need to reassess their access management policies to ensure that these accounts are disabled promptly after use, to prevent unauthorized access to sensitive information.
Key Takeaways
- Affected Systems: SaaS applications and corporate data
- Action Required: Organizations should implement stricter access management protocols, ensure timely deactivation of guest accounts, and enhance multi-factor authentication (MFA) measures.
- Timeline: Disclosed on 2026
Original Article Summary
Organizations often create guest accounts to give contractors, suppliers, and partners temporary access to files and SaaS applications. Many of these accounts remain active long after they are needed, creating overlooked access paths to corporate data. Guest accounts accounted for 69% of monitored SaaS accounts in 2025, an increase of more than 1.9 million compared with the previous year, according to Kaseya’s 2026 SaaS Security Report: Closing the Unmanaged Trust Gap. They outnumber licensed users … More → The post OAuth, guest accounts, and weak MFA drive SaaS risk appeared first on Help Net Security.
Impact
SaaS applications and corporate data
Exploitation Status
No active exploitation has been reported at this time. However, organizations should still apply patches promptly as proof-of-concept code may exist.
Timeline
Disclosed on 2026
Remediation
Organizations should implement stricter access management protocols, ensure timely deactivation of guest accounts, and enhance multi-factor authentication (MFA) measures.
Additional Information
This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.