SaaS Security Posture Management (SSPM) takes an automated approach to tracking, and even remediating, the exploitable misconfigurations in organizations apps. One slight misconfiguration or unsafeguarded user permission presents a possible attack vector. Most organizations now have hundreds of apps and hundreds of global settings as well as thousands to tens of thousands of user roles and permissions to configure, monitor and consistently update. There is a way to protect users from deceptive OAuth apps and misappropriated user permissions.
Source: https://threatpost.com/lessons-from-real-life-misconfiguration-exploitations/165659/