Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Secrets Management

apono

Kubernetes Secrets: How to Use Them Securely

Feb 10, 2025 By The Apono Team In Apono
Storing sensitive values is a problem as old as software itself. In 2016, Uber experienced a massive data breach that exposed 57 million users’ personal information—all traced back to a hardcoded AWS credential discovered in a GitHub repository. While we have successfully established that hardcoding secrets such as API keys and passwords is bad practice, correctly storing them is a different story, and the issues from 2016 are still prevalent today (8 years later…).
Read Post
nightfall

Nightfall Releases the 2025 State of Secrets Exposure Report

Feb 5, 2025 By Lindsey Watts In Nightfall
This year's report offers a look at what changed, what stayed the same, and where you can find a little hope in the quest for effective secrets management. While other reports focus on code repositories, Nightfall detects secrets across numerous mission critical SaaS apps and endpoints, giving a more comprehensive picture of leakage trends throughout the development lifecycle. We found secrets in ticketing apps, messaging and collaboration tools, cloud workspaces, and yes, code repositories.
Read Post
doppler

Doppler announces integration with Datadog to streamline security and monitoring

Jan 30, 2025 By Doppler
Doppler, the leading provider of secrets management solutions, announced a new integration with Datadog, a cloud application monitoring and security platform. This collaboration provides engineering and operations teams with an integrated solution for securely managing sensitive credentials and gaining insights into cloud environments through real-time monitoring.
Read Post

Integrate Jira Data Center With GitGuardian For Real-Time Secrets Detection

Jan 15, 2025 By GitGuardian In GitGuardian
We are excited to announce that Jira Data Center users can now leverage GitGuardian to perform real-time scanning for secrets in issues and comments. We have supported Jira Cloud with real-time scanning for some time, but now teams that run their own private versions of the popular project management tool, helping teams plan, track, and release work. You can install GitGuardian on multiple Jira Data Center sites to monitor your projects.
View Video

Integrate Bitbucket Cloud With GitGuardian's Secrets Detection Platform Now Supports

Jan 15, 2025 By GitGuardian In GitGuardian
We are proud to announce that BitBucket Cloud users can now leverage the GitGuardian Secrets Detection platform to find hardcoded secrets throughout their existing codebases and actively monitor any code changes for newly leaked credentials. We have supported Bitbucket Data Center and Sever for years, but now, teams managing code on bitbucket.org can reap those same benefits. Integration is very simple and straightforward.
View Video

Introducing The GitGuardian Secret Analyzer

Dec 19, 2024 By GitGuardian In GitGuardian
Introducing The GitGuardian Secret Analyzer GitGuardian has always helped you find your leaked secrets, but now GitGuardian can also quickly reveal the permissions of your secrets. One of the first questions any security team needs to ask itself when a secret is leaked is "What exactly could an attacker do with it?" Does it grant read-only access or does it have permissions to write or delete data? At the same time, understanding the correct scope needed for replacing a credential can take a long time, as all too often, the permissions originally granted are poorly documented, if at all.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.