Following GitGuardian Blog - Take Control of Your Secrets Security's news feed is very easy. Subscribe using the "follow" button on the top right and if you want to, choose the updates by topic or tag.
We will deliver them to your inbox, your phone, or you can use follow.it like your own online RSS reader. You can unsubscribe whenever you want with one click.
Keep up to date with GitGuardian Blog - Take Control of Your Secrets Security!
GitGuardian Blog - Take Control of Your Secrets Security: GitGuardian Blog - NHI Governance & Secrets Security
Is this your feed? Claim it!
The ecosystems differed, the targets differed, and the actors may have differed. The goal was the same: get malicious code to run where developers work, and walk away with credentials.
Campaign 1 — Megalodon: 5,561 GitHub Repositories Backdoored in Six HoursOn May 18, 2026, an automated campaign pushed 5,718 malicious commits to 5,561 GitHub repositorie...
GitGuardian helps developers and security teams detect secrets (API keys, tokens, credentials) that have been accidentally committed to source code. At the core of our platform sits our secret detection engine: a component that takes raw bytes as input and outputs detected secrets, running against hundreds of gigabytes of code and data every day. Migrating this engine to ...
It is clear from the updated data and research in The Verizon 2026 Data Breach Investigations Report (DBIR) that attackers are still winning, overall, through access.
Credentials still decide how far many attacks can go. Exploited vulnerabilities are now the ...
The Mayfair neighborhood in Northwest Chicago is known for its dense stock of historic Chicago bungalows, which is so extensive that the North Mayfair Bungalow District was added to the National Regi...
For a few months, TeamPCP has been ruling the world of open-source supply chain attacks. Since the first Trivy attack in February 2026, the threat actor group has been chaining the new compromise, mainly by reusing pre...