Posts tagged with "github"

Scan Pull Requests for Credentials & Secrets with the Nightfall DLP GitHub Action

Aug 26, 2020

Scan Pull Requests for Credentials & Secrets with the Nightfall DLP GitHub Action

Nightfall’s DLP platform is now available in the form of an open-source GitHub Action to protect your secrets and sensitive data as an integrated part of your code review workflow. What are GitHub Actions? GitHub Actions is a powerful feature that allows users to automate custom elements of their software development workflows. What is the […]

Read More
Nightfall’s Radar Simplifies Secrets Detection with New Features

Aug 18, 2020

Nightfall’s Radar Simplifies Secrets Detection with New Features

Last year we introduced Nightfall Radar to the GitHub marketplace. Radar, a solution designed to detect committed secrets within repositories, leverages machine learning to avoid the common pitfalls that plague open source tools currently on the market. Radar has been proven to address the need for repo scans that are fast, accurate, and reliable by […]

Read More
5 Common Accidental Sources of Data Leaks

Jul 17, 2020

5 Common Accidental Sources of Data Leaks

How do bad actors gain access to a company's data? Most of the time, well-meaning everyday people are the real source of data insecurity. This list of five common sources of accidental data leaks will help you identify the problems that could be lurking in your systems, apps, and platforms.

Read More
Calgary Public Library Keeps Credentials & Secrets Safe with Nightfall Radar for GitHub

Jul 14, 2020

Calgary Public Library Keeps Credentials & Secrets Safe with Nightfall Radar for GitHub

Calgary Public Library needed a DLP solution that could detect and classify secret data like login credentials and API keys. That's when they chose Nightfall.

Read More
Preventing S3 bucket Leaks with 5 Best Practices for AWS Cloud Security

Mar 6, 2020

Preventing S3 bucket Leaks with 5 Best Practices for AWS Cloud Security

When it comes to cloud services, the name AWS is nearly synonymous with the public cloud. Although Amazon’s grip on the cloud might be loosening (however slowly), there’s no question that AWS with its estimated 47% market share is a cloud behemoth. This means that for many businesses, cloud security starts with AWS security. Within […]

Read More
How Data Discovery and Classification Can Help Secure PII

Jan 8, 2020

How Data Discovery and Classification Can Help Secure PII

When it comes to cybersecurity, data discovery can sometimes be an overlooked component of many organizations’ approach to securing data. However, the importance that data discovery has for any modern organization or enterprise cannot be understated. Data discovery tools help provide security teams with data visibility, or the ability to know where sensitive data is […]

Read More
Nightfall Weekly InfoSec Roundup: July 1 to July 8

Jul 11, 2019

Nightfall Weekly InfoSec Roundup: July 1 to July 8

Cyber Attacks & Breaches 239,000 patient records vulnerable in insurance database security incident  (Beckers Hospital Review) July 1st The exposed database was discovered on May 13. It contained names, addresses, telephone numbers, email addresses, IP addresses, dates of birth, and information regarding health insurance. Around 239,000 insurance records were left vulnerable. It is unclear how […]

Read More
Introducing Radar API: Detect Credentials & Secrets in Code via Machine Learning

May 14, 2019

Introducing Radar API: Detect Credentials & Secrets in Code via Machine Learning

This post was updated in March 2020 Problem: Leaking Sensitive Credentials In 2016, hackers gained access to Uber’s private code repositories and used hard-coded credentials to exfiltrate 57 million driver records from an AWS S3 bucket. As a result of this breach, and its subsequent cover-up, Uber was fined $148 million. While Uber is one […]

Read More