Risks of source code leakage
Attackers are always after your source code! Source code is very leaky and often contains sensitive information like secrets (APi keys or credentials).
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Git
Has My Secret Leaked? [Security Zines]
A new comic strip to better grasp the simple but effective way HasMySecretLeaked checks your secrets without asking you to reveal them!
What is DAST (Dynamic Application Security Testing) 60 sec explainer
Discover the Power of DAST in Cybersecurity | Dynamic Application Security Testing Explained In the digital age, cyber threats are a constant concern. Protecting your organization's data and systems is paramount, and that's where DAST (Dynamic Application Security Testing) comes into play!
Good Application Security Posture Management Requires Great Data
Discover how GitGuardian enhances Application Security Posture Management, ASPM, with top-notch code security and secrets detection and remediation coordination.
Fast food restaurants hacked simultaneously - Breach breakdown
The video based on this article discusses a cybersecurity researcher's experience in uncovering a major security flaw in an AI-based hiring system called Chattr.ai, which provides services to numerous fast-food chains and hourly employers across the United States, including popular names like Applebees, Arbys, Chickfila, Dunkin, IHOP, KFC, Shoneys, Subway, Tacobell, Target, and Wendys. The researcher's investigation was triggered by their suspicion that many startups using Firebase, particularly those with the.ai top-level domain, may have exposed credentials.
Three Tips To Use AI Securely at Work
How can developers use AI securely in their tooling and processes, software, and in general? Is AI a friend or foe? Read on to find out.
Understanding the Risks of Long-Lived Kubernetes Service Account Tokens
Kubernetes Service Account tokens are exploited in many attack chain scenarios. Learn how to mitigate these risks and secure your Kubernetes clusters effectively.
What is SAST? Static Application Security Testing explained in 60 seconds
Discover the world of Static Application Security Testing (SAST) in this concise video. SAST, which stands for Static Application Security Testing, is an essential security tool that examines your source code for potential vulnerabilities. Unlike dynamic tools, SAST operates solely on your code, making it a static analysis tool.
GitLab Vulnerabilities And Security Incidents: 2023 In Review
We continue our series of DevOps incidents and failures. This time, we stopped our view on GitLab. What incidents made this secure service provider appear in Tech media in 2023? Well, let’s jump at the topic and see what vulnerability flaws and threat incidents GitLab had to deal with to help its users protect their data.
Secure Your Secrets with .env
Using environment variables to store secrets instead of writing them directly into your code is one of the quickest and easiest ways to add a layer of protection to your projects.