CISOs' Predictions
Professional Security Magazine, Friday, December 5th, 2025
Jan Bee, CISO at the platform TeamViewer offers two predictions for 2026: third-party SaaS supply chains will become the primary attack point; and password-based authentication will finally become obsolete in organisations.
He says:
The interconnected world of SaaS applications will emerge as the most significant vulnerability for enterprises in 2026. As companies continue moving away from on-premise infrastructure to cloud-based solutions, threat actors are shifting their focus from traditional infrastructure to third-party and even fourth-party supplier risks.
The days of isolated legacy systems are ending, and with them, the old playbook for enterprise security. What makes this particularly concerning now is that adversaries are leveraging AI to accelerate their ability to identify and exploit vulnerabilities across these complex supplier networks, turning what were once time-consuming surveillance efforts into automated processes.