Today, organizations are increasingly working and sharing information within cloud applications and infrastructure, while simultaneously shifting toward a distributed workforce - so legacy DLP solutions are losing efficacy. This is mainly a problem of implementation, as legacy endpoint and network solutions are typically deployed as agents on specific endpoints or on a network - when information is transferred to cloud applications from unmanaged or off-network devices, these legacy solutions are powerless to intercept it. And once the sensitive information is stored within the cloud application or infrastructure, legacy endpoint and network solutions can no longer see it at all. As a result, users of legacy DLP solutions are left with no visibility into sensitive data that already exists in the cloud, or which is being transferred to the cloud on unmanaged networks or devices. These gaps in visibility for legacy DLP solutions present an emerging risk for organizations seeking to avoid data exfiltration.