Protect Your Company Secrets: Free GitHub Leaks Audit in One Click
Discover how exposed your company is on public GitHub, anonymously and for free.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Git
McAfee Discovers New Phishing Campaign Targeting GitHub Users
A phishing campaign is targeting GitHub users with phony CAPTCHA pages, according to researchers at McAfee. The phishing emails ask users to address a security vulnerability in a GitHub repository that they recently contributed to, and contain a link to find more information about the alleged vulnerability. This link leads to a fake CAPTCHA page that attempts to trick them into installing malware.
GitLab Patches Critical SAML Authentication Flaw: Protect Your Systems from Exploitation
In today's fast-paced digital landscape, security vulnerabilities are constant concerns for organizations that rely on cloud-based services and distributed systems. Recently, GitLab addressed a critical security flaw that affected both its Community Edition (CE) and Enterprise Edition (EE). This flaw, tracked as CVE-2024-45409, has been categorized as a critical vulnerability with a CVSS score of 10.0, the highest possible score, signifying its severity.
Get Caught Up With ggshield: New Ways To Install, Custom Remediation Messages, SERIF, And More...
Discover ggshield's latest enhancements, allowing you to craft custom remediation messages, format scan results in SARIF, and help you better shift left for secrets security.
Navigating Git History
In today’s software development, Git usually stands as a “go-to” for DevOps projects. It allows teams of developers to collaborate and contribute on non-linear projects, go back to any point in time and undo, as well as, redo changes whenever they need. In this article, we will go over important commands to help you navigate your commit history.
Customize Your Team's Remediation Messages In ggshield
We are very proud to announce that you can now easily provide your own custom remediation messages in ggshield, the GitGuardian CLI. Earlier versions of ggshield offered the same general remediation advice to all users if a secret was detected when using git hooks for automated scanning.
GitGuardian's FP Remover Dramatically Reduces False Positive In Scans
Do you hate false positives in your secrets scan results? We do too. GitGuardian has introduced a whole new approach to eliminating false positives, eliminating them by around 50% so far. And we are just getting started! GitGuardian's Machine Learning experts and Secret Detection team have created "FP Remover", a new in-house machine learning model that significantly reduces false positives by understanding code context and semantics while enforcing security and privacy best practices.
Supercharge Team Productivity with Essential Jira Integrations
Looking to supercharge your team's productivity, optimize project management, and enhance security within Jira? Look no further! Watch the session where six Atlassian Marketplace vendors - Move Work Forward, Reliex, SaaSJet, Release Management, OBoard, and GitProtect.io - united their efforts to share best practices & insider tips for streamlining your workflows and productivity, boosting collaboration, and protecting your Jira data.
How to Handle Secrets in Go
Learn the best practices for handling secrets in Go in the cloud-native ecosystem.
Blue Team Con 2024: Sharing Security Insights and Defense Strategies in Chicago
Key insights and defense strategies were shared at Blue Team Con 2024 in Chicago, where defenders gathered to advance their skills for fighting today’s toughest threats.