Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

GitGuardian releases its comprehensive "2025 State of Secrets Sprawl Report," revealing a widespread and persistent security crisis that threatens organizations of all sizes. The report exposes a 25% increase in leaked secrets year-over-year, with 23.8 million new credentials detected on public GitHub in 2024 alone. Most concerning for enterprise security leaders: 70% of secrets leaked in 2022 remain active today, creating an expanding attack surface that grows more dangerous with each passing day.

Map risk across cloud environments with ownership automation and business context so teams can understand, prioritize, and effectively reduce critical exposures.

Board Includes Top Security and Risk Executives With Leadership Experience at Reddit, SoFi, Databricks, Bank of America, and Chime.

With recent attack disclosures like Browser Syncjacking and extension infostealers, browser extensions have become a primary security concern at many organizations. SquareX's research team discovers a new class of malicious extensions that can impersonate any extension installed on the victim's browser, including password managers and crypto wallets.

Persona Unveils Industry-First Business Fraud Prevention Solution New solution strengthens defenses against rising business impersonation and fraud rings.

CYSIAM aannounces partnership with CrowdStrike to strengthen cyber resilience across the UK Defence sector supply chain. Through this partnership, CYSIAM will equip defence organisations with advanced protection powered by the CrowdStrike Falcon cybersecurity platform, safeguarding critical national infrastructure and enhancing the nation's defence capabilities.

Pathfinder AI expands Hunters' vision for AI-driven SOCs, introducing Agentic AI for autonomous investigation and response.

With the growing importance of security compliance for startups, more companies are seeking to achieve and maintain compliance with frameworks like SOC 2, ISO 27001 & GDPR. Bubba AI, Inc. is building a comprehensive solution for these organizations to easily integrate compliance workflows and build their own customized processes through an open-source alternative to existing GRC (Governance, Risk, and Compliance) automation platforms.

INE, the leading provider of networking and cybersecurity training and certifications, today announced its recognition as an enterprise and small business leader in online course providers and cybersecurity professional development, along with its designation as the recipient ofG2's 2025 Best Software Awards for Education Products. This category of awards ranks the world's top 50 software education products based on authentic reviews from more than 100 million G2 users.

Exposure management leader recognized for comprehensive asset mapping, advanced risk scoring, and autonomous penetration testing capabilities.