Git

10 GitHub Security Best Practices

Feb 5, 2024 By Simon Maple In Snyk

The security landscape is constantly changing. As such, this blog has been updated to reflect the risks developers and security teams face today and how to overcome them. In our rapidly advancing, code-dominated digital landscape, safeguarding your codebase takes center stage. GitHub is the go-to platform for code sharing and version control in the developer community. However, given its widespread adoption, GitHub is not immune to many of the security challenges that developers face daily.

Read Post

Snyk

Read more about 10 GitHub Security Best Practices

Cloudflare breach - How the Okta attack led to Cloudflare systems getting hacked: Breach Breakdown

Feb 5, 2024 By GitGuardian In GitGuardian

In this video, we drill down into the recent breach of Cloudflare systems including how attackers were able to use stolen credentials from the Okta attack to move laterally and hack the Cloudflare internal Atlassian server. The security incident shows the dangers of secrets sprawl not only in internal systems but also in the supply chain leading to potential data leaks.

View Video

GitGuardian

Read more about Cloudflare breach - How the Okta attack led to Cloudflare systems getting hacked: Breach Breakdown

Cloudflare hacked - How the Okta breach enabled hackers to breach cloudflare

Feb 5, 2024 By GitGuardian In GitGuardian

Cloudflare is one of the largest networks in the world and had there internal systems breached due to stolen credentials from the October 2023 Okta breach.

View Video

GitGuardian

Read more about Cloudflare hacked - How the Okta breach enabled hackers to breach cloudflare

The Secret's Out: How Stolen Okta Auth Tokens Led to Cloudflare Breach

Feb 2, 2024 By Thomas Segura In GitGuardian

Cloudflare experienced a security breach when its internal systems were compromised, leading to unauthorized access to sensitive data. Another incident highlights the importance of maintaining strict secrets security across the supply chain.

Read Post

GitGuardian

Read more about The Secret's Out: How Stolen Okta Auth Tokens Led to Cloudflare Breach

Securing the Gateway - Mastering API Security in the Modern Web Landscape

Jan 31, 2024 By GitGuardian In GitGuardian

APIs are the backbone of modern web applications, yet we rarely assess security beyond the traditional WAFs and Gateways. In fact, in a recent scan of over 1.5k GraphQL endpoints revealed a staggering 46,000+ security issues and sensitive data leaks—all accessible without authentication, with 10% classified as critical. Due to API’s being widely used by developers, they have now become a favored attack vector for threat actors.

View Video

GitGuardian

Read more about Securing the Gateway - Mastering API Security in the Modern Web Landscape

GitGuardian Honeytoken For Peace Of Mind

Jan 31, 2024 By GitGuardian In GitGuardian

GitGuardian Honeytokens can help you stay safe as you tackle secrets sprawl at scale. Deploying GitGuardian honeytokens into all of your repositories will give you an immediate warning system, letting you know when someone scans your repos or if they they get leaked onto the public internet. Dealing with a large number of incidents is already challenging enough, Use GitGuardian honeytokens to buy some peace of mind while you work to eliminate secrets sprawl.

View Video

GitGuardian

Read more about GitGuardian Honeytoken For Peace Of Mind

Evaluating Secrets Detection Platforms Is Complex: GitGuardian is here to help you navigate the process

Jan 30, 2024 By Dwayne McDaniel In GitGuardian

Discover GitGuardian's efficient POC-based approach to evaluating a secrets detection and remediation platform, simplifying the complex buying process for enterprises.

Read Post

GitGuardian

Read more about Evaluating Secrets Detection Platforms Is Complex: GitGuardian is here to help you navigate the process

Terraform Project for Managing Vault Secrets in a Kubernetes Cluster

Jan 29, 2024 By Guest Expert In GitGuardian

This article uses Kubernetes Secrets as a native Kubernetes component for handling sensitive data at container runtime and Vault as a trusted storage and maintenance solution for sensitive data.

Read Post

GitGuardian

Read more about Terraform Project for Managing Vault Secrets in a Kubernetes Cluster

What is SCA (Software Composition Analysis) software?

Jan 26, 2024 By GitGuardian In GitGuardian

SCA or Software Composition Analysis is an important security tool that helps you understand how your application is made up. Our software is built from open-source components and these components can have vulnerabilities or simply be malicious. SCA scans our applications to identify these components and lets us know if there are vulnerabilities or issues within it. In this short video we explain what SCA tools are and how they work as well as there role in application and cyber security.

View Video

GitGuardian

Read more about What is SCA (Software Composition Analysis) software?

Introducing Bearer's Advanced GitLab Integration

Jan 24, 2024 By Guillaume Montard In Bearer

We are thrilled to announce the launch of Bearer's advanced GitLab integration! Building on the lessons learned from our successful GitHub App, this integration aims to revolutionize the GitLab experience for our customers, enhancing both the developer and security workflow.

Read Post

Bearer

Read more about Introducing Bearer's Advanced GitLab Integration

Subscribe to Git

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Git

10 GitHub Security Best Practices

Cloudflare breach - How the Okta attack led to Cloudflare systems getting hacked: Breach Breakdown

Cloudflare hacked - How the Okta breach enabled hackers to breach cloudflare

The Secret's Out: How Stolen Okta Auth Tokens Led to Cloudflare Breach

Securing the Gateway - Mastering API Security in the Modern Web Landscape

GitGuardian Honeytoken For Peace Of Mind

Evaluating Secrets Detection Platforms Is Complex: GitGuardian is here to help you navigate the process

Terraform Project for Managing Vault Secrets in a Kubernetes Cluster

What is SCA (Software Composition Analysis) software?

Introducing Bearer's Advanced GitLab Integration

Monthly Archive

Follow Us