Secrets Management stories

Cycode launches AI Teammates and CI/MON runtime protection to enhance software supply chain security and threat detection in application security.

CyberArk has launched its Secure Workload Access Solution to bolster machine identity security, enhancing protections against credential-based attacks in hybrid environments.

A malicious commit in the tj-actions/changed-files GitHub Action, used in over 23,000 repositories, threatens software security across numerous CI pipelines.

Venafi has launched its cloud-based machine identity security solutions in Australia, enhancing organisations' ability to manage risks as AI adoption rises.

Carlsberg has enhanced its development processes by integrating GitHub's tools, streamlining coding and security while reducing operational tool sprawl.

CloudSEK has uncovered over 30,000 exposed Postman workspaces leaking sensitive API keys, affecting major firms across healthcare, finance, and sports sectors.

GitGuardian has launched a Non-Human Identity Security strategy to enhance the management of NHIs and their secrets, addressing enterprise security challenges.

GitGuardian's 2024 report reveals that 79% of IT leaders have seen secrets leaks, highlighting growing concerns and a shift towards enhanced security measures.

Report reveals grave cybersecurity flaws, with 97% of Non-Human Identities having excessive privileges and 44% of tokens exposed.

A survey reveals critical security gaps in managing non-human identities, with only 15% of organisations confident in their NHI security measures.

Entrust unveils KeyControl as a Service, addressing critical gaps in key management with its cloud-based solution, enhancing security and compliance.

Tessell partners with HashiCorp to boost its DBaaS platform by integrating automation and security tools, enhancing flexibility, scalability, and security for users.

Avocado, a consulting firm, has announced an enhanced partnership with CyberArk to bolster identity security in Aussie and Kiwi firms amidst swift digital transformation.

The 2024 State of Secrets Sprawl report reveals a 28% rise in new secret occurrences leaked on GitHub in 2023, exposing a significant security gap and putting various sectors at risk.

Secrets detection specialist GitGuardian collaborates with CyberArk to tackle Secrets Sprawl in DevOps, offering automated detection and leak remediation.

GitGuardian has launched 'HasMySecretLeaked,' a tool to help security engineers check if their organisation's secrets have leaked on GitHub.

Keeper Security, a leader in password management, has become the first company in its field to join the CVE programme as a CNA.

With this acquisition, HashiCorp is expanding its product portfolio to enable customers to discover and manage their entire secret inventory.