Monthly Archive

A Look Into the Secrets of MCP: The New Secret Leak Source

Apr 29, 2025 By Gaetan Ferry In GitGuardian

MCP rapidly enhances AI capabilities but introduces security challenges through its distributed architecture. Especially, the distributed nature of MCP requires a lot of NHIs and their secrets. Our research shows that MCP is a new source of leaks that already discloses real-world secrets.

Read Post

GitGuardian

Read more about A Look Into the Secrets of MCP: The New Secret Leak Source

BSides Seattle 2025: Rebuilding Trust in Systems In The Age Of NHIs

Apr 28, 2025 By Dwayne McDaniel In GitGuardian

The BSides Seattle 2025 speakers showed how security and IAM fail under stress and why usable security must consider human limits and machine-scale risk.

Read Post

GitGuardian

Read more about BSides Seattle 2025: Rebuilding Trust in Systems In The Age Of NHIs

The Secrets Sprawl is Worse Than You Think: Key Takeaways from the 2025 Verizon DBIR

Apr 25, 2025 By Dwayne McDaniel In GitGuardian

Discover 10 critical insights from the 2025 Verizon DBIR on secrets leaks, NHI risks, and credential abuse threats affecting today’s cloud-first orgs.

Read Post

GitGuardian

Read more about The Secrets Sprawl is Worse Than You Think: Key Takeaways from the 2025 Verizon DBIR

GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection

Apr 24, 2025 By Carole Winqwist In GitGuardian

As cyber threats in healthcare continue to evolve, GitGuardian strengthens its commitment to the sector by joining Health-ISAC and offering members enhanced secrets detection capabilities to protect sensitive data.

Read Post

GitGuardian

Read more about GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection

Introducing ggscout: Unified Visibility and Detection for Your Vaulted Secrets

Apr 23, 2025 By Soujanya Ain In GitGuardian

Change your Secrets Game with ggscout, your secrets manager's manager. Gain unprecedented visibility and control over your secrets managers. Secure your vaults, prevent leaks, and achieve proactive secrets governance.

Read Post

GitGuardian

Read more about Introducing ggscout: Unified Visibility and Detection for Your Vaulted Secrets

Secrets Sprawl and AI: Why Your Non-Human Identities Need Attention Before You Deploy That LLM

Apr 22, 2025 By Dwayne McDaniel In GitGuardian

Your RAG implementation can expose secrets in some unexpected ways. Secure your LLM deployments and scrub knowledge bases to prevent your secrets from leaking.

Read Post

GitGuardian

Read more about Secrets Sprawl and AI: Why Your Non-Human Identities Need Attention Before You Deploy That LLM

ATLSecCon 2025: Security Readiness Means Human Readiness

Apr 18, 2025 By Dwayne McDaniel In GitGuardian

LLMs won’t fix a broken SOC, but apprenticeship might. ATLSecCon 2025 revealed how outdated hiring and cultural gatekeeping are breaking cybersecurity from the inside out.

Read Post

GitGuardian

Read more about ATLSecCon 2025: Security Readiness Means Human Readiness

GitGuardian Launches NHI Governance: Bringing Order to the Chaos of Non-Human Identity Security

Apr 15, 2025 By GitGuardian In GitGuardian

NHI Governance delivers unified visibility and control over secrets in complex environments, addressing critical security gaps.

Read Post

GitGuardian

Read more about GitGuardian Launches NHI Governance: Bringing Order to the Chaos of Non-Human Identity Security

GitGuardian Launches NHI Governance to Secure Non-Human Identities and Their Secrets for Enterprises

Apr 15, 2025 By Soujanya Ain In GitGuardian

Secrets sprawl is a growing cybersecurity challenge, especially with NHIs. GitGuardian's new NHI Governance product offers centralized inventory and lifecycle management to help enterprises regain control over their secrets and prevent costly breaches.

Read Post

GitGuardian

Read more about GitGuardian Launches NHI Governance to Secure Non-Human Identities and Their Secrets for Enterprises

A Security Leader's Perspective on The Real Business Risks of Secrets Managers Redundancy

Apr 11, 2025 By Dustin Lehr In GitGuardian

Redundancy in secrets management introduces risks, as well as operational complexity, ultimately undermining overall security maturity.

Read Post

GitGuardian

Read more about A Security Leader's Perspective on The Real Business Risks of Secrets Managers Redundancy

Introducing GitGuardian Custom Tags, Making Filtering and Sorting Incidents and Honeytokens Easier

Apr 11, 2025 By GitGuardian In GitGuardian

GitGuardian has introduced custom tags, empowering teams to manage and prioritize secrets incidents and Honeytokens better than ever. GitGuardian has always automatically applied certain predefined tags to help teams identify incidents where, for example, a secret was found in a Default branch, is in a sensitive file, or discovered from a historical scan, just to name a few options.

View Video

GitGuardian

Read more about Introducing GitGuardian Custom Tags, Making Filtering and Sorting Incidents and Honeytokens Easier

Enhanced Email Incident Alerting Controls from GitGuardian

Apr 11, 2025 By GitGuardian In GitGuardian

GitGuardian is helping reams respond to and remediate incidents more efficiently than ever, thanks to our new Enhanced email incident alerting controls. While you can configure GitGuardian alerts to integrate with servies like Slack, Teams, PagerDuty, and any other system that can work with JSON and webhooks, Email notifications are still the default way we send alerts.

View Video

GitGuardian

Read more about Enhanced Email Incident Alerting Controls from GitGuardian

AI Is the New Trust Boundary: STL TechWeek Reveals the Risk Shift

Apr 9, 2025 By Dwayne McDaniel In GitGuardian

At St. Louis TechWeek 2025, AI took center stage as industry thought leaders shared sessions warning about inputs, data health, and how agents are the new attack surface.

Read Post

GitGuardian

Read more about AI Is the New Trust Boundary: STL TechWeek Reveals the Risk Shift

How to Handle Secrets in Docker

Apr 8, 2025 By Guest Expert In GitGuardian

DevOps engineers must handle secrets with care. In this series, we summarize best practices for leveraging secrets with your everyday tools.

Read Post

GitGuardian

Read more about How to Handle Secrets in Docker

From Alert to Action: Best Practices to Handle Responsible Disclosure

Apr 7, 2025 By Gaetan Ferry In GitGuardian

Responsible disclosure is an often overlooked but critical component of cybersecurity alerting processes. Explore key best practices that can enhance communication and collaboration with researchers, turning potential security threats into opportunities for stronger defense.

Read Post

GitGuardian

Read more about From Alert to Action: Best Practices to Handle Responsible Disclosure

GitGuardian - protect your enterprise against leaked secrets and mismanaged identities.

Apr 7, 2025 By GitGuardian In GitGuardian

We allow organizations to discover and remediate exposed Secrets as well as manage NHIs lifecycle across both their internal network and public perimeter (for ex over permissioned, stale secrets, secrets in multiple vaults…). Our unrivaled secrets detection engine is trained and backtested in real-time against +5Bn commits and used by more than 600k developers, it is also the n°1 app on the GitHub Market place. GitGuardian integrates natively with the SDLC (GitHub, Gitlab…) but also with other data sources such as Jira, Slack, ServiceNow, Docker, as secrets leak in all these environments.

View Video

GitGuardian

Read more about GitGuardian - protect your enterprise against leaked secrets and mismanaged identities.

BSides San Diego 2025: Shifting the Risk Conversation By The Sea Shore

Apr 4, 2025 By Dwayne McDaniel In GitGuardian

Discover how BSidesSD 2025 challenged traditional GRC, spotlighted data poisoning, and promoted human-driven security insights. Read our highlights from this community event.

Read Post

GitGuardian

Read more about BSides San Diego 2025: Shifting the Risk Conversation By The Sea Shore

Introducing GitGuardian's Generic Secrets Enricher

Apr 3, 2025 By GitGuardian In GitGuardian

GitGuardian is proud to introduce our new Machine Learning-powered Generic Secret Enricher, helping all customers quickly understand the origin and type of discovered generic secrets. The 2025 GitGuardian State of Secret Sprawl report shows that 58% of all detected secrets fall into the generic category.

View Video

GitGuardian

Read more about Introducing GitGuardian's Generic Secrets Enricher

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

A Look Into the Secrets of MCP: The New Secret Leak Source

BSides Seattle 2025: Rebuilding Trust in Systems In The Age Of NHIs

The Secrets Sprawl is Worse Than You Think: Key Takeaways from the 2025 Verizon DBIR

GitGuardian Joins Health-ISAC: Strengthening Cybersecurity in Healthcare Through Secrets Detection

Introducing ggscout: Unified Visibility and Detection for Your Vaulted Secrets

Secrets Sprawl and AI: Why Your Non-Human Identities Need Attention Before You Deploy That LLM

ATLSecCon 2025: Security Readiness Means Human Readiness

GitGuardian Launches NHI Governance: Bringing Order to the Chaos of Non-Human Identity Security

GitGuardian Launches NHI Governance to Secure Non-Human Identities and Their Secrets for Enterprises

A Security Leader's Perspective on The Real Business Risks of Secrets Managers Redundancy

Introducing GitGuardian Custom Tags, Making Filtering and Sorting Incidents and Honeytokens Easier

Enhanced Email Incident Alerting Controls from GitGuardian

AI Is the New Trust Boundary: STL TechWeek Reveals the Risk Shift

How to Handle Secrets in Docker

From Alert to Action: Best Practices to Handle Responsible Disclosure

GitGuardian - protect your enterprise against leaked secrets and mismanaged identities.

BSides San Diego 2025: Shifting the Risk Conversation By The Sea Shore

Introducing GitGuardian's Generic Secrets Enricher

Monthly Archive

Follow Us