Blog

Nightfall’s DLP platform is now available in the form of an open-source GitHub Action to protect your secrets and sensitive data as an integrated part of your code review workflow. What are GitHub Actions? GitHub Actions is a powerful feature that allows users to automate custom elements of their software development workflows. What is the […]

Last year we introduced Nightfall Radar to the GitHub marketplace. Radar, a solution designed to detect committed secrets within repositories, leverages machine learning to avoid the common pitfalls that plague open source tools currently on the market. Radar has been proven to address the need for repo scans that are fast, accurate, and reliable by […]

How do bad actors gain access to a company's data? Most of the time, well-meaning everyday people are the real source of data insecurity. This list of five common sources of accidental data leaks will help you identify the problems that could be lurking in your systems, apps, and platforms.

Calgary Public Library needed a DLP solution that could detect and classify secret data like login credentials and API keys. That's when they chose Nightfall.

When it comes to cloud services, the name AWS is nearly synonymous with the public cloud. Although Amazon’s grip on the cloud might be loosening (however slowly), there’s no question that AWS with its estimated 47% market share is a cloud behemoth. This means that for many businesses, cloud security starts with AWS security. Within […]

When it comes to cybersecurity, data discovery can sometimes be an overlooked component of many organizations’ approach to securing data. However, the importance that data discovery has for any modern organization or enterprise cannot be understated. Data discovery tools help provide security teams with data visibility, or the ability to know where sensitive data is […]

Cyber Attacks & Breaches 239,000 patient records vulnerable in insurance database security incident  (Beckers Hospital Review) July 1st The exposed database was discovered on May 13. It contained names, addresses, telephone numbers, email addresses, IP addresses, dates of birth, and information regarding health insurance. Around 239,000 insurance records were left vulnerable. It is unclear how […]

This post was updated in March 2020 Problem: Leaking Sensitive Credentials In 2016, hackers gained access to Uber’s private code repositories and used hard-coded credentials to exfiltrate 57 million driver records from an AWS S3 bucket. As a result of this breach, and its subsequent cover-up, Uber was fined $148 million. While Uber is one […]