Cofense CloudSeeker: Free Cloud Security Tool for Enterprise Cyber Exposure | GBAF

Cofense CloudSeeker: Free Cloud Security Tool for Enterprise Cyber Exposure | GBAF

Editorial & Advertiser disclosure

Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

Home > Top Stories > Cofense launches new cloud security service, CloudSeeker, to address security risks around shadow IT

Cofense launches new cloud security service, CloudSeeker, to address security risks around shadow IT

Published by Gbaf News

Posted on June 8, 2018

5 min read

Last updated: January 21, 2026

UK's FTSE 100 and financial markets react to Russia's embassy statement on G7 loans to Ukraine - Global Banking & Finance Review — The image illustrates the UK's FTSE 100 index performance amid the controversy over G7 loans to Ukraine backed by frozen Russian assets. This reflects the ongoing financial tension and geopolitical implications discussed in the article.

Free tool gives enterprises visibility into cyber exposure caused by the proliferation of cloud services and ability to tackle the visibility gap caused by unsanctioned IT

Cofense™, the leading provider of human-driven phishing defence solutions worldwide, today announced its new free cloud discovery utility – CloudSeeker™.

The tool helps organisations understand what SaaS applications are in use by an organisation – sanctioned or not – and allows them to identify configured cloud services. CloudSeeker can shine a light on which cloud properties an attacker may impersonate to increase authenticity of phishing attacks.

CloudSeeker is a tool that a network defender can use to determine if their corporate domain has been used to configure SaaS applications. The corporate domain is entered into CloudSeeker and that domain is tested across a catalogue of common SaaS applications. The results of that query delivers the visibility into the cloud services configured for a corporate domain, highlighting applications that are in use but may not have been provisioned with IT’s knowledge. Output is placed into a file that can be compared against future scans to identify changes.

“With Gartner1 observing shadow IT amounts to between 30 and 40 percent of total IT spend, it highlights just how in the dark enterprises can be to the types of business emails their staff will be receiving and a large portion of this will be dominated by SaaS providers,” said Aaron Higbee, co-founder and CTO of Cofense. “CEO fraud or Business Email Compromise (BEC) is a very real threat that typically targets members in finance. But attackers can easily repurpose the technique creating realistic phishing sites targeting HR, IT, Engineering, Support, etc… masquerading as cloud tools the organisation actually uses.”

It only takes a few guesses as to what shadow IT may be in use and a fraudulent login page on what appears to be a SaaS website for a cybercriminal to convince an employee to hand over their log in details or click a compromised link that grants the hacker access to the corporate network.

“CloudSeeker shines a light on shadow IT and counters the security risk it presents by seamlessly fitting into an organisation’s broader security ecosystem. By offering this free solution to businesses, we are leveling up the playing field between attackers and would-be victims. After all, putting up a good defence requires a strong offense, critical to this is knowing where the threats are in the first place,” concludes Higbee.

Cofense CloudSeeker is the first free cloud security tool of its kind that performs this service without collecting any personally identifiable information, requires no credentials to operate and complements Cofense’s Human Phishing Defence Solution. As part of this, Cofense PhishMe™ and Cofense Reporter™ turn all employees into a human phishing defence, and Cofense Triage™ and Cofense Intelligence™ strengthen the organisation’s ability to quickly identify and respond to phishing attacks in progress.

For more information about Cofense CloudSeeker, please visit: https://cofense.com/cloudseeker/

Free tool gives enterprises visibility into cyber exposure caused by the proliferation of cloud services and ability to tackle the visibility gap caused by unsanctioned IT

Cofense™, the leading provider of human-driven phishing defence solutions worldwide, today announced its new free cloud discovery utility – CloudSeeker™.

The tool helps organisations understand what SaaS applications are in use by an organisation – sanctioned or not – and allows them to identify configured cloud services. CloudSeeker can shine a light on which cloud properties an attacker may impersonate to increase authenticity of phishing attacks.

CloudSeeker is a tool that a network defender can use to determine if their corporate domain has been used to configure SaaS applications. The corporate domain is entered into CloudSeeker and that domain is tested across a catalogue of common SaaS applications. The results of that query delivers the visibility into the cloud services configured for a corporate domain, highlighting applications that are in use but may not have been provisioned with IT’s knowledge. Output is placed into a file that can be compared against future scans to identify changes.

“With Gartner1 observing shadow IT amounts to between 30 and 40 percent of total IT spend, it highlights just how in the dark enterprises can be to the types of business emails their staff will be receiving and a large portion of this will be dominated by SaaS providers,” said Aaron Higbee, co-founder and CTO of Cofense. “CEO fraud or Business Email Compromise (BEC) is a very real threat that typically targets members in finance. But attackers can easily repurpose the technique creating realistic phishing sites targeting HR, IT, Engineering, Support, etc… masquerading as cloud tools the organisation actually uses.”

It only takes a few guesses as to what shadow IT may be in use and a fraudulent login page on what appears to be a SaaS website for a cybercriminal to convince an employee to hand over their log in details or click a compromised link that grants the hacker access to the corporate network.

“CloudSeeker shines a light on shadow IT and counters the security risk it presents by seamlessly fitting into an organisation’s broader security ecosystem. By offering this free solution to businesses, we are leveling up the playing field between attackers and would-be victims. After all, putting up a good defence requires a strong offense, critical to this is knowing where the threats are in the first place,” concludes Higbee.

Cofense CloudSeeker is the first free cloud security tool of its kind that performs this service without collecting any personally identifiable information, requires no credentials to operate and complements Cofense’s Human Phishing Defence Solution. As part of this, Cofense PhishMe™ and Cofense Reporter™ turn all employees into a human phishing defence, and Cofense Triage™ and Cofense Intelligence™ strengthen the organisation’s ability to quickly identify and respond to phishing attacks in progress.

For more information about Cofense CloudSeeker, please visit: https://cofense.com/cloudseeker/