GitGuardian

How security teams are getting credential visibility into developer endpoints

Don't miss, GitGuardian, News /

How security teams are getting credential visibility into developer endpoints 2026-06-18 at 08:30 By Help Net Security As we noted in our earlier analysis, attackers already know secrets are on your developers’ machines, the only question is whether security teams do. The supply chain attack calendar of 2026 has been relentless. Megalodon backdoored 5,500 GitHub […]

How security teams are getting credential visibility into developer endpoints Read More »

Attackers already know the secrets are on your developers’ machines. Do you?

Don't miss, Expert analysis, Expert corner, GitGuardian, Hot stuff, News /

Attackers already know the secrets are on your developers’ machines. Do you? 2026-06-04 at 09:26 By Help Net Security In a recent GitGuardian analysis, an average of 150 secrets were found on a sample of developer endpoints. Private keys accounted for 38% of unique secrets, while cloud, identity provider, and secret management credentials (AWS IAM,

Attackers already know the secrets are on your developers’ machines. Do you? Read More »

Product showcase: Stop secrets from leaking through AI coding tools with GitGuardian

Artificial Intelligence, Don't miss, GitGuardian, News, Product showcase /

Product showcase: Stop secrets from leaking through AI coding tools with GitGuardian 2026-04-15 at 07:32 By Help Net Security AI coding assistants are quickly becoming part of everyday development. Tools like Cursor, Claude Code, and GitHub Copilot can now do more than suggest code. They can read files, run shell commands, and call external tools

Product showcase: Stop secrets from leaking through AI coding tools with GitGuardian Read More »

29 million leaked secrets in 2025: Why AI agents credentials are out of control

Artificial Intelligence, authentication, credentials, cybersecurity, Don't miss, Expert analysis, Expert corner, GitGuardian, Hot stuff, News, opinion /

29 million leaked secrets in 2025: Why AI agents credentials are out of control 2026-04-14 at 08:11 By Help Net Security AI agents need credentials to work. They authenticate with LLM platforms, connect to databases, call SaaS APIs, access cloud resources, and orchestrate across dozens of external services. Every integration point requires an identity. Most

29 million leaked secrets in 2025: Why AI agents credentials are out of control Read More »

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot

Don't miss, GitGuardian, Hot stuff, News, SANS, supply chain compromise, Trend Micro /

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot 2026-03-30 at 18:52 By Zeljka Zorz TeamPCP’s destructive run of supply chain breaches has stopped, for now: it has been three days since the group published malicious versions of Telnyx’s SDK on PyPI, and there haven’t been reports of new open-source project compromises. Partnership with

TeamPCP’s attack spree slows, but threat escalates with ransomware pivot Read More »

AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure

Artificial Intelligence, code, credentials, cybersecurity, Data leak, GitGuardian, GitHub, News, report, software development /

AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure 2026-03-27 at 20:33 By Anamarija Pogorelec Code keeps moving through pipelines, and credentials continue to surface alongside it. GitGuardian’s State of Secrets Sprawl 2026 puts the count at 28.65 million new hardcoded secrets in public GitHub commits in 2025, extending a multi-year rise

AI frenzy feeds credential chaos, secrets leak through code, tools, and infrastructure Read More »

Why boards must prioritize non-human identity governance

boardroom, CISO, cyber risk, cybersecurity, Don't miss, GitGuardian, Hot stuff, identity management, News, Non Human Identities, opinion /

Why boards must prioritize non-human identity governance 2026-02-03 at 08:36 By Help Net Security Boards of Directors (BoDs) do three things exceptionally well when cyber is framed correctly. They set risk appetite, they allocate capital, and they demand evidence that the business can withstand disruption without losing momentum. Why cyber keeps becoming a board topic

Why boards must prioritize non-human identity governance Read More »

Why prevention-first secrets security will define enterprise scale: Learnings from a leading telecom

CISO, cybersecurity, Don't miss, GitGuardian, Hot stuff, News, remediation, telecommunications /

Why prevention-first secrets security will define enterprise scale: Learnings from a leading telecom 2026-01-28 at 08:15 By Help Net Security Once a secret enters Git, it’s expensive to remediate. But the real problem runs deeper than cost. Grégory Maitrallain, Solution Architect at Orange Business, discovered this reality during their implementation: “Once a secret is pushed

Why prevention-first secrets security will define enterprise scale: Learnings from a leading telecom Read More »

What the GitGuardian secrets sprawl report reveals about leaked credentials

Don't miss, GitGuardian, News, report, Video /

What the GitGuardian secrets sprawl report reveals about leaked credentials 2025-09-02 at 07:47 By Help Net Security In this Help Net Security video, Dwayne McDaniel, Senior Developer Advocate at GitGuardian, presents findings from The State of Secrets Sprawl 2025. McDaniel explains why generic secrets are especially difficult to detect, why private repositories pose an even

What the GitGuardian secrets sprawl report reveals about leaked credentials Read More »

70% of leaked secrets remain active two years later

cybersecurity, Data leak, GitGuardian, GitHub, News, report, survey /

70% of leaked secrets remain active two years later 2025-03-20 at 07:01 By Help Net Security Long-lived plaintext credentials have been involved in most breaches over the last several years, according to GitGuardian. When valid credentials, such as API keys, passwords, and authentication tokens, leak, attackers at any skill level can gain initial access or

70% of leaked secrets remain active two years later Read More »

Report: The State of Secrets Sprawl 2025

Don't miss, GitGuardian, News, report, Whitepapers and webinars /

Report: The State of Secrets Sprawl 2025 2025-03-19 at 16:31 By Help Net Security GitGuardian’s State of Secrets Sprawl 2025 report shows no progress in combating secrets sprawl, with 23.8 million secrets leaked on public GitHub repositories in 2024—a 25% year-over-year increase. Despite GitHub Push Protection’s efforts, secrets sprawl is accelerating, especially with generic secrets,

Report: The State of Secrets Sprawl 2025 Read More »

Infosec products of the month: December 2024

Appdome, Cato Networks, Datadog, Fortinet, GitGuardian, Horizon3.ai, Netwrix, News, Radiant Logic, RunSafe Security, SecureAuth, Stairwell, Stamus Networks, Sweet Security, Tenable, Trellix, Versa Networks, Veza /

Infosec products of the month: December 2024 2024-12-27 at 06:03 By Help Net Security Here’s a look at the most interesting products from the past month, featuring releases from: Appdome, Cato Networks, Datadog, Fortinet, GitGuardian, Horizon3.ai, Netwrix, Radiant Logic, RunSafe Security, SecureAuth, Stairwell, Stamus Networks, Sweet Security, Tenable, Trellix, Versa Networks, and Veza. GitGuardian launches

Infosec products of the month: December 2024 Read More »

What open source means for cybersecurity

cybersecurity, Endor Labs, GitGuardian, Legit Security, Lineaje, News, open source, report, software, survey, Tidelift /

What open source means for cybersecurity 2024-12-23 at 06:03 By Help Net Security With outdated and inadequately maintained components, along with insecure dependencies, the open-source ecosystem presents numerous risks that could expose organizations to threats. In this article, you will find excerpts from 2024 open-source security reports that can help your organization strengthen its software

What open source means for cybersecurity Read More »

AI is becoming the weapon of choice for cybercriminals

1Password, Artificial Intelligence, AuditBoard, Bitdefender, Bugcrowd, Cisco, Cloud Security Alliance, Code42, CyberArk, cybersecurity, Deep Instinct, Deloitte, generative AI, GitGuardian, Google Cloud, Immuta, Ivanti, Lakera, Legit Security, Netacea, Netskope, News, report, RWS, survey, Venafi /

AI is becoming the weapon of choice for cybercriminals 2024-12-20 at 07:03 By Help Net Security AI changes how organizations look at cybersecurity GenAI is compromising security while promising efficiency This article highlights key findings from 2024 reports on AI and GenAI technologies, focusing on their potential and major challenges. Overreliance on GenAI to develop

AI is becoming the weapon of choice for cybercriminals Read More »

New infosec products of the week: December 20, 2024

Appdome, GitGuardian, Netwrix, News, RunSafe Security, Stairwell /

New infosec products of the week: December 20, 2024 2024-12-20 at 06:02 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from Appdome, GitGuardian, RunSafe Security, Stairwell, and Netwrix. GitGuardian launches multi-vault integration to combat secrets sprawl GitGuardian unveiled a comprehensive Non-Human Identity (NHI) security strategy

New infosec products of the week: December 20, 2024 Read More »

GitGuardian launches multi-vault integration to combat secrets sprawl

GitGuardian, Industry news /

GitGuardian launches multi-vault integration to combat secrets sprawl 2024-12-18 at 10:03 By Industry News GitGuardian unveiled a comprehensive Non-Human Identity (NHI) security strategy with integrations across major secrets management platforms, addressing the growing challenge of secrets sprawl in enterprise environments. With Non-Human Identities—digital references used to authenticate machine-to-machine access—now outnumbering human users 100:1, organizations face

GitGuardian launches multi-vault integration to combat secrets sprawl Read More »

Report: Voice of Practitioners 2024 – The True State of Secrets Security

CyberArk, GitGuardian, News, Whitepapers and webinars /

Report: Voice of Practitioners 2024 – The True State of Secrets Security 2024-11-05 at 12:33 By Help Net Security In this study, GitGuardian and CyberArk reveal the stark reality of secrets management across 1,000 organizations. With 79% experiencing secrets leaks and an average remediation time of 27 days, the findings expose critical gaps between security

Report: Voice of Practitioners 2024 – The True State of Secrets Security Read More »

AI learning mechanisms may lead to increase in codebase leaks

Application Security, code, CyberArk, cybersecurity, digital transformation, GitGuardian, News, report, survey /

AI learning mechanisms may lead to increase in codebase leaks 2024-11-05 at 06:03 By Help Net Security The proliferation of non-human identities and the complexity of modern application architectures has created significant security challenges, particularly in managing sensitive credentials, according to GitGuardian. Based on a survey of 1,000 IT decision-makers in organizations with over 500

AI learning mechanisms may lead to increase in codebase leaks Read More »

Infosec products of the month: October 2024

Action1, Balbix, BreachLock, Commvault, Dashlane, Data Theorem, Edgio, ExtraHop, Fastly, Frontegg, GitGuardian, IBM, Ivanti, Jumio, Kusari, Legit Security, Metomic, Nametag, Neon, News, Nucleus Security, Okta, Qualys, Rubrik, SAFE Security, Sectigo, SECURITI.ai, Veeam Software, XM Cyber /

Infosec products of the month: October 2024 2024-11-01 at 06:04 By Help Net Security Here’s a look at the most interesting products from the past month, featuring releases from: Action1, Balbix, BreachLock, Commvault, Dashlane, Data Theorem, Edgio, ExtraHop, Fastly, Frontegg, GitGuardian, IBM, Ivanti, Jumio, Kusari, Legit Security, Metomic, Nametag, Neon, Nucleus Security, Okta, Qualys, Rubrik,

Infosec products of the month: October 2024 Read More »

New infosec products of the week: October 18, 2024

ExtraHop, GitGuardian, Nametag, News, Okta, Rubrik, Sectigo /

New infosec products of the week: October 18, 2024 2024-10-18 at 06:01 By Help Net Security Here’s a look at the most interesting products from the past week, featuring releases from ExtraHop, GitGuardian, Nametag, Okta, Rubrik, and Sectigo. GitGuardian Visual Studio Code extension helps developers protect their sensitive information GitGuardian’s new Visual Studio Code extension

New infosec products of the week: October 18, 2024 Read More »

Scroll to Top