What is the most likely cause of unsanctioned SaaS applications being used in an organization, according to CASB reports?

The most likely cause of unsanctioned SaaS applications being used in an organization, as indicated by CASB (Cloud Access Security Broker) reports, is shadow IT. Shadow IT refers to the use of applications, software, or services within an organization without the explicit approval or knowledge of the IT department. With the growing trend of employees using their personal devices and applications to carry out work-related tasks, it becomes easier for unsanctioned SaaS applications to be adopted for convenience or to meet specific needs that the sanctioned tools do not address. This widespread practice can lead to security vulnerabilities, data leaks, and compliance issues, as these unapproved applications may not have the same security controls or monitoring that official tools possess.

In the context of CASB reports, understanding shadow IT helps organizations identify and address the risks associated with unauthorized applications, allowing for better management and protection of sensitive data.