Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Nightfall

Nightfall's data protection & classification platform enables SOC 2 compliance

Security teams that work in highly regulated industries or build solutions for consumers must adhere to compliance controls and regimes required for their business. One of the most important compliance requirements for many companies is the SOC 2 audit. The SOC 2 audit provides detailed information and quality assurance about essential security factors such as the confidentiality of data under your organization’s stewardship, privacy controls, and many other standards.

Is Microsoft Teams HIPAA Compliant?

Microsoft Teams, and subsequently Microsoft, likely need no introduction. The popular collaboration tool launched in 2016, providing organizations with a powerful way to communicate and share information within the Microsoft ecosystem. Tools like Teams have only become more important post-COVID with teams being hybrid, decentralized, and distributed.

ICYM: 4 lessons for securing codebases from secrets exfiltration

Last month we hosted a webinar dedicated to discussing the issue of codebase security. As trends like secrets and credential exfiltration continue to be of concern within systems like GitHub, threats, such as cryptojacking and supply side attacks, have become more of a problem. This makes understanding key aspects of codebase security very important. That’s why we pulled out 4 lessons from our recent session that developers and security engineers must know.

GitHub DLP Webinar - Examples of Codebase Data Breaches (Part 2)

In this segment from one of our previous webinars on GitHub data loss prevention, Nightfall AI product specialist Michael Osakwe provides detailed examples of secrets leaks and exfiltration that occurred on GitHub. These incidents illustrate the risk of not just exposing cloud systems but stakeholder information as well.

GitHub DLP Webinar - Modeling the SaaS Threat Landscape (Part 3)

In this segment from one of our previous webinars on GitHub data loss prevention, Nightfall AI product specialist Michael Osakwe illustrates the risk SaaS systems like GitHub pose by providing a model of the SaaS threat landscape. In this model, he explains how fundamental aspects of SaaS systems can lead to increased security risks if not taken into account.

GitHub DLP Webinar - Best Practices for Securing Codebases (Part 4)

In this segment from one of our previous webinars on GitHub data loss prevention, Nightfall AI CTO and co-founder Rohan Sathe shares 8 critical best practices that developers and security engineers must keep top of mind in order to protect secrets in codebases and maintain good DevSecOps.

The NIST Cybersecurity Framework: Security Checklist And Best Practices

The National Institute of Standards and Technology (NIST) is part of the US Department of Commerce and was founded in 1901. NIST was originally established to help the U.S. industry become more competitive with economic rivals and peers, such as the UK and Germany. NIST prioritizes developing measurements, metrics, and standards for technology used in different industries.

Prevent secrets, credentials, and PII leaking in application logs with the Nightfall Developer Platform

Infosec leaders have a lot of corners to cover in their cybersecurity strategy. When crafting the tactics and onboarding the platforms that will protect sensitive information, the checklist of requirements could be missing a very important vector for attack, compliance risk or data loss: application logs.

Preventing data loss in data warehouses with the Nightfall Developer Platform

Data warehouses power your data analysis and business intelligence operations so you can level up your knowledge and progress toward bigger business goals. Like any key component of your tech stack, using data warehouses effectively also requires care and caution — especially when uploading and sharing sensitive information.