Please turn JavaScript on
READ
PUBLISH
My newsFind FeedsDelivery settingsPlansMy earnings
HelpBlog
Login
Find more feeds
header-image

GitGuardian Blog - Take Control of Your Secrets Security

Following GitGuardian Blog - Take Control of Your Secrets Security's news feed is very easy. Subscribe using the "follow" button on the top right and if you want to, choose the updates by topic or tag.

We will deliver them to your inbox, your phone, or you can use follow.it like your own online RSS reader. You can unsubscribe whenever you want with one click.

Keep up to date with GitGuardian Blog - Take Control of Your Secrets Security!

GitGuardian Blog - Take Control of Your Secrets Security: GitGuardian Blog - NHI Governance & Secrets Security

Is this your feed? Claim it!

Publisher:  Unclaimed!
Message frequency:  2.92 / week

Message History

How Machine Learning Transforms Security Alert Chaos into Actionable Intelligence

Imagine opening your security dashboard to find 10,000 alerts. Which one do you investigate first?

In 2024, GitGuardian discovered 23.7 million new hardcoded secrets on public GitHub—a 25% surge. 58% are "generic" secrets (passwords, database credentials, API keys) that traditional rule-based ...

Read full story
A Complete Guide to Transport Layer Security (TLS) Authentication

TL;DR: TLS authentication verifies server and client identities through certificates issued by Certificate Authorities, preventing man-in-the-middle attacks while ensuring data confidentiality, integrity, and authenticity. Organizations must enforce modern pro...

Read full story
Shai-Hulud 2.0: the supply chain attack that learned

Two months after the initial Shai-Hulud supply chain attack in September, the threat actors have returned with a new, updated campaign they refer to as "The Second Coming". It leverages the same worm-like propagation mechanism observed previously, but with updated tactics, probably learnt from their initial mistakes.

class="kg-bookmark-container" href="https://blog.gitg...

Read full story
OWASP Top 10 2025 Updates: Supply Chain, Secrets, And Misconfigurations Take Center Stage

The OWASP Top 10 has always been an extremely valuable snapshot of the most pressing, real web application security risks. The 2025 updates keep that role, but shift the spotlight in a few important ways. Two new categories make the cut, one legacy bucket ...

Read full story
Workload And Agentic Identity at Scale: Insights From CyberArk's Workload Identity Day Zero

What do the terms identity, AI, workload, access, SPIFFE, and secrets all have in common? These were the most common words used at CyberArk's Workload Identity Day Zero in Atlanta ahead of KubeCon 202...

Read full story