More evidence that sometimes email is not good enough

Email continues to be a source of security risks. You can look at a recent report here or search the internet for similar cases. But the bottom line is very simple. If you are a SaaS vendor in the legal industry ask yourself these two questions:

1. Do you consider your SaaS application to be mission-critical?
2. Does your application send notifications to its users via email?

If you have answered "yes" to both questions then you may be opening yourself -and your customers- to an attack similar to the ones described the report above. 

On a brighter note, Bellefield is working to address this very issue.