Finding Dangerous Hardcoded Secrets You Don't Know Exist in Your SDLC



Toyota Motor Corporation recently suffered a data breach due to a mistakenly exposed access key on GitHub. That hardcoded access key evaded detection for five years! This news was the latest in a long line of headlines about the damage caused by hardcoding secrets in code. To combat this pervasive risk, security teams are turning to code scanners that look for secrets, but soon realize that their visibility into all the places hardcoded secrets can be lurking is incomplete and outdated.

 

Join Liav Caspi (CTO at Legit Security) and Roy Blit (Head of Security Research at Legit Security) as they discuss practical methods you can use to prevent software supply chain attacks and reduce the damage caused by hardcoded secrets. In this webinar you will learn:

  • New techniques attackers are using to harvest your hardcoded secrets
  • Why accurate visibility into your development pipelines, beyond just source code, is paramount to the success of secret scanning programs
  • How to scale secret scanning initiatives to effectively support thousands of developers

Speaker and Presenter Information

Roy Bilt

 

Liav Caspi

Relevant Government Agencies

Other Federal Agencies, Federal Government, State & Local Government

Members who viewed this event also viewed:


Event Type
Webcast


When
Thu, Jan 19, 2023, 1:00pm ET


Cost
Complimentary:    $ 0.00


Website
Click here to visit event website


Organizer
SANS Institute


Contact Event Organizer



Return to search results