The Secrets Sprawl is Worse Than You Think: Key Takeaways from the 2025 Verizon DBIR

Discover 10 critical insights from the 2025 Verizon DBIR on secrets leaks, NHI risks, and credential abuse threats affecting today’s cloud-first orgs.

EDITOR’S PICK

The State of Secrets Sprawl 2025

Dwayne McDaniel

10 Mar 2025 – 4 min read

all tags

Customer Stories

Security Chats - Igor, Director of Development at a large computer software company

Igor Klyashchitskiy, Director of Development and his team have been using GitGuardian tools for 3 years to minimize the possibility of security violations that they could not find without automated secret detection. PeerSpot has interviewed him and written an objective and detailed review.

Carole Winqwist

2 Jan 2022 – 1 min read

Product News

Detector of The Month – Okta, December 2021

Keep secrets out of your source code. GitGuardian's automated secrets detection supports Okta API tokens and client secrets.

Ziad Ghalleb

29 Dec 2021 – 3 min read

Breach explained

Source Code as a Vulnerability - A Deep Dive into the Real Security Threats From the Twitch Leak

While most of the attention has been on streamers’ revenues, our 6000 Git repositories study shows a much more serious problem that extends far beyond just this single breach.

Mackenzie Jackson

22 Dec 2021 – 9 min read

From securing the battlespace to securing the codebase

This month we are pleased to welcome Daniel, an Account Executive with a passion for everything security.

Thomas Segura

17 Dec 2021 – 3 min read

Secrets detection

Should we target zero false positives?

While scanning millions of documents for secrets, should we really aim at reaching absolute zero or is the story not so simple?

Guardians

15 Dec 2021 – 5 min read

Tutorials

Kubernetes Hardening Tutorial Part 1: Pods

Get a deeper understanding of Kubernetes Pods security with this first tutorial.

Guest Expert

10 Dec 2021 – 8 min read

Announcing our $44M fundraise to further enable the AppSec Shared Responsibility Model

Today, on behalf of the entire GitGuardian’s team, I am thrilled to share the news that GitGuardian has raised a $44M Series B led by Eurazeo and Sapphire with participation from existing investors Balderton, Fly Ventures, and BPI. This brings our total investment to date to $56M!

Jérémy Thomas

7 Dec 2021 – 4 min read

Best practices

10 Rules for Better Cloud Security

Cloud security is a shared responsibility and a big challenge. Here are the basic rules to have in mind to set up efficient guardrails.

Thomas Segura

3 Dec 2021 – 5 min read

Secrets detection

Secrets Detection - Optimizing filter processes

From benchmark analysis, here are our key takeaways on building efficient real-time data filtering pipelines.

Guardians

1 Dec 2021 – 6 min read

Building an AppSec product at GitGuardian

Meet Alexandra, who shared with us her motivations to start her career as a full-stack developer at GitGuardian.

Thomas Segura

26 Nov 2021 – 3 min read

Product News

GitGuardian is now part of the PagerDuty Partner Program verified integrations

GitGuardian is now a verified PagerDuty integration, bringing the power of automated secrets detection to one of the leading platforms for real-time digital operations.

Ziad Ghalleb

26 Nov 2021 – 3 min read

Product News

Detector of The Month – Supabase, November 2021

Keep secrets out of your source code. GitGuardian's automated secrets detection now supports Supabase JWT secrets and Service Role JWT secrets.

Ziad Ghalleb

19 Nov 2021 – 2 min read

The Secrets Sprawl is Worse Than You Think: Key Takeaways from the 2025 Verizon DBIR

Dwayne McDaniel

MOST POPULAR

GitHub Copilot Security and Privacy Concerns: Understanding the Risks and Best Practices

Dwayne McDaniel

Authentication and Authorization Best Practices

Tiexin Guo

EDITOR’S PICK

The State of Secrets Sprawl 2025

Soujanya Ain

GitGuardian Is Now The Overall Most Installed GitHub Marketplace App

Dwayne McDaniel

Security Chats - Igor, Director of Development at a large computer software company

Carole Winqwist

Detector of The Month – Okta, December 2021

Ziad Ghalleb

Source Code as a Vulnerability - A Deep Dive into the Real Security Threats From the Twitch Leak

Mackenzie Jackson

From securing the battlespace to securing the codebase

Thomas Segura

Should we target zero false positives?

Guardians

Kubernetes Hardening Tutorial Part 1: Pods

Guest Expert

Announcing our $44M fundraise to further enable the AppSec Shared Responsibility Model

Jérémy Thomas

10 Rules for Better Cloud Security

Thomas Segura

Secrets Detection - Optimizing filter processes

Guardians

Building an AppSec product at GitGuardian

Thomas Segura

GitGuardian is now part of the PagerDuty Partner Program verified integrations

Ziad Ghalleb

Detector of The Month – Supabase, November 2021

Ziad Ghalleb

Start your journey to secrets-free source code