A naukri.com initiative
Cybersecurity-Insiders
1M
121
Image Credit: Cybersecurity-Insiders
GitGuardian Report: 70% of Leaked Secrets Remain Active for Two Years, Urging Immediate Remediation
- GitGuardian released the '2025 State of Secrets Sprawl Report,' revealing a 25% increase in leaked secrets year-over-year.
- 70% of secrets leaked in 2022 remain active today, posing a significant cybersecurity threat.
- Generic secrets, like hardcoded passwords, account for over half of all detected leaks.
- Private repositories are not fully secure, with AWS IAM keys and generic passwords frequently exposed.
- Secrets are prevalent in collaboration platforms like Slack and containers environments like DockerHub.
- Non-human identities (NHIs) outnumber human identities, leading to persistent vulnerabilities.
- Organizations using secrets management solutions still face a 5.1% secret leakage rate.
- The report emphasizes the need for comprehensive secrets security, including monitoring, detection, and remediation.
- To address secrets sprawl, organizations should deploy monitoring, centralized detection, establish rotation policies, and provide developer guidelines.
- GitGuardian is an NHI security platform helping organizations enhance secrets security.
Read Full Article
7 Likes
For uninterrupted reading, download the app