🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

AI with no guardrails 🚗💨, FOIA for transparency, and OPSEC tips—Stephanie Honore breaks it all down on the #SecurityRepoPodcast. Bonus: her take on 'spycore' music! 🎧 c.gitguardian.com/srp-foia

Cedar Point isn’t the only thrill in Sandusky, OH! 🚀 CodeMash 2024 was all about sharing community wisdom, which is really exciting stuff. Who’s responsible for non-human identity security? Learn what the community thought. Catch up here: c.gitguardian.com/cdmsh

What do observability & security have in common? Context is king 👑. On this episode of the Security Repo Podcast, Josh Lee explains why collecting all the data isn’t enough—it’s about what you focus on. Learn more: c.gitguardian.com/8az #DevSecOps #Observability

Observability isn't just metrics, logs, and traces—it's about context! Josh Lee breaks down why understanding the why behind your data is crucial for both #DevOps and #security. 💡 Catch his insights on the most recent Security Repo Podcast episode: c.gitguardian.com/8az

🤔 Comparing Secrets Detection solutions? Don't get lost in the 📊 metrics maze! 🎯The F1 score balances precision and recall to find the sweet spot. 👉 Learn how to use it s.gitguardian.com/f1score

🎭 Hermeneutics meets cybersecurity! Mining & Metals ISAC’s Cherie Burgett applies ancient interpretation techniques to modern threat intelligence. 🔍 #CyberThreats youtu.be/VkHXvNn4FBM

From ancient texts to ransomware notes—Cherie Burgett bridges philosophy & cybersecurity at Mining & Metals ISAC. Learn how interpreting threat actor behavior can improve defenses. 🛡️ #ThreatIntel #Hermeneutics youtu.be/VkHXvNn4FBM

🚨 Non-human identities (NHIs) outnumber human users by 45:1—yet many IAM strategies ignore them. CISOs must take ownership of NHI security to prevent breaches. Don’t leave the biggest attack surface unprotected! 🔑 More insights here: c.gitguardian.com/ciso-iam

IAM without non-human identity (NHI) governance? Incomplete. ❌ Service accounts, APIs, & machine identities are prime targets for attackers. It’s time for CISOs to take charge & secure NHIs. 🔐 Full breakdown: c.gitguardian.com/ciso-iam

👑 Security Champion Programs help build trust, catch risks early, and make security a shared responsibility. 🚀 Dustin Lehr shares what works (and what doesn’t) in the latest Security Repo Podcast! 🎙️ Listen now: youtu.be/WWzJe7-kJ5g #CyberSecurity #AppSec #DevSecOps

🚨 Leaked AWS keys aren’t fully revoked! At #WWHF #MileHigh2025, we learned that AWS’s CompromisedKeyQuarantine policy doesn’t prevent all actions—it’s not really a security feature. Rotate exposed secrets immediately! More insights: c.gitguardian.com/wwhfmh

"Security teams can't be everywhere—but your devs can." 🎯 Security Champions help spread security knowledge! Learn how to start (and scale) a great program on the latest Security Repo Podcast! 🎙️ Listen here: youtu.be/WWzJe7-kJ5g #SecurityChampions #AppSec #DevSecOps

🔑 Git is powerful… and permanent. Many assume overwriting a commit removes secrets, but Git’s history is forever! At #WWHF #MileHigh2025, we discussed why rotation—not deletion—is the only safe fix for exposed credentials. Read more: c.gitguardian.com/wwhfmh

🎙️ Time to properly meet your Security Repo Podcast co-host! The latest episode we get to know Kayssar Daher—his journey, security hot takes, and why he thinks security is just “housekeeping.” Listen now: youtu.be/qUEameZsDr4 #CyberSecurity #AppSec #DevSecOps

Security isn’t just about tech—it’s about people. Kayssar Daher shares why building relationships in a company is just as critical as patching vulnerabilities. 🔑 🎧 Listen to the latest Security Repo Podcast! : youtu.be/qUEameZsDr4 #SecurityLeadership #DevSecOps #AppSec

Secrets #scanning isn't just about monitoring code repositories like GitHub. The 2025 GitGuardian report reveals a surge in hardcoded #secrets, with 23.7M added in 2024. Critical exposures also occur in collaboration tools like Slack and Jira☝️🤖 buff.ly/2lxxh6e

🚢 15M Docker images scanned. 🔐 100K valid secrets found. 😱 7K+ active AWS keys exposed. 🏭 Fortune 500 companies affected. 🧪 Secrets in ENV, configs, layers. 🛡️ Time to scan your containers. Read more : s.gitguardian.com/eede3e

🔓 Artifactory tokens: the skeleton keys to your kingdom. Leaked one? Congrats, you just invited attackers to your production party. Read-only? More like read-everything. devopsdigest.com/the-hidden-dan… #SupplyChainSecurity #DevSecOps

Think your Artifactory token is safe in that Jenkinsfile? So did the last company... until their CI/CD pipeline became an attack vector. Read-only tokens can still write your downfall. devopsdigest.com/the-hidden-dan… #DevOps #Security