Finding Dangerous Hardcoded Secrets You Didn’t Know Existed in Your SDLC

Toyota Motor Corporation recently suffered a data breach due to a mistakenly exposed access key on GitHub. That hardcoded access key evaded detection for five years! This news was the latest in a long line of headlines about the damage caused by hardcoding secrets in code. To combat this pervasive risk, security teams are turning to code scanners that look for secrets, but soon realize that their visibility into all the places hardcoded secrets can be lurking is incomplete and outdated.

Join Liav Caspi (CTO at Legit Security) and Roy Blit (Head of Security Research at Legit Security) as they discuss practical methods you can use to prevent software supply chain attacks and reduce the damage caused by hardcoded secrets. In this webinar you will learn:

• New techniques attackers are using to harvest your hardcoded secrets

• Why accurate visibility into your development pipelines, beyond just source code, is paramount to the success of secret scanning programs

• How to scale secret scanning initiatives to effectively support thousands of developers