Connect with us

Technology

Legit Security Enhances Secrets Detection & Prevention with a Single, Integrated View of All Secrets Findings and Recovery Actions Across the SDLC, Including Within Personal GitHub Repos

Published

1 day ago

on

Security leader expands the industry’s most comprehensive and accurate secrets scanning capabilities

BOSTON, Dec. 19, 2024 /PRNewswire/ — Legit Security, the definitive application security posture management (ASPM) leader providing end-to-end visibility and protection across the entire software factory, today announced enhancements to its secrets scanning product. Available as either a stand-alone product or as part of a broader ASPM platform, Legit released a new secrets dashboard for an integrated view of all findings and recovery actions taken to remediate secrets. In addition, Legit released new discovery and remediation capabilities for secrets found within developers’ personal GitHub repositories.

Secrets – from API keys and tokens to credentials and PII – play a vital role in application development. However, the high value of secrets makes them a prime target for attackers and creates risk across the organization, from security operations to cloud and platform engineering. Legit’s new capabilities greatly improve the ability to mitigate risk and reduce the attack surface associated with secrets.

“Secrets are a serious security risk, and because they are so omnipresent, they are ripe targets for threat actors seeking access to sensitive resources,” said Lior Barak, co-founder and chief product officer, Legit Security. “As we have seen all too often, most secrets scanning tools produce too many false positives or fail to address secrets beyond source code. Legit is solving this problem by providing the broadest set of secrets detection capabilities available today. Our AI-powered solution provides much-needed visibility and delivers the industry’s most accurate results. Additionally, our secrets command line interface provides extensive prevention tools and solutions to control risk across the business from code to cloud. Finally, we give teams one central dashboard to view all secrets discovery and remediation activity to ease reporting requirements.”

The explosive growth in non-human identities (NHIs), which need credentials to manage authentication and authorization, has increased the prevalence of secrets. While security teams typically focus on secrets in source code, they are increasingly emerging in ticket systems, artifact registries, and other systems, such as Confluence, Jira, and Slack. Organizations are challenged with protecting secrets from exposure while enabling developers to build services that rely on them. This challenge is further exacerbated by compliance requirements, such as HIPPA, PCI DSS and GDPR, that direct organizations to secure secrets.

Legits’ enhancements are the latest in the company’s track record of delivering innovative capabilities to secure the modern software factory. With the earlier release of its AI-powered capabilities to detect and protect secrets across the software development pipeline, Legit was the first to apply AI/ML to significantly reduce noise associated with secrets scanning.

Legit’s new secrets dashboard gives teams:

Centralized visualization: Provides the most complete view of all secrets detection and prevention activities across the enterprise to prioritize remediation and ensure guardrails are in place.Secrets analytics: Prioritizes secrets remediation based on factors such as severity, source, repo/product, and user.Secrets prevention: Provides insights into potential new secrets that have been prevented based on an organization’s policies and established guardrails and identifies developers actively using preventative measures.Secrets growth and remediation trends: Insights into new secrets, issues resolution, and backlog trends, so that organizations can measure the effectiveness of AppSec programs in preventing and remediating secrets.

Legit’s new ability to discover secrets in personal GitHub repositories gives teams:

Secrets discovery: Identifies and monitors secrets within a developer’s personal GitHub and the organization’s account, ensuring that developers do not expose secrets.Personal repository discovery: Identifies and builds an inventory of all personal repositories owned by an organization’s developers for a comprehensive list of assets used by developers.Consolidated triage and remediation: Integrates findings from business and personal accounts into the Legit platform to provide a single view of the risk associated with secrets, regardless of where they reside.

With Legit’s new and enhanced capabilities, organizations gain critical insights into the enterprise’s secrets posture to understand risk and remediation trends over time. They are also provided with the broadest coverage to strengthen their security posture and protect their development environment from end to end.

Legit offers a free trial of its secrets detection and prevention solution. To register, visit https://info.legitsecurity.com/secrets-detection-and-prevention-free-trial.

About Legit Security
Legit is a new way to manage your application security posture for security, product, and compliance teams. With Legit, enterprises get a cleaner, easier way to manage and scale application security and address risks from code to cloud. Built for the modern SDLC, Legit tackles the most challenging problems facing security teams, including GenAI usage, proliferation of secrets, and an uncontrolled dev environment. Fast to implement and easy to use, Legit lets security teams protect their software factory from end to end, gives developers guardrails that let them do their best work safely, and delivers metrics that prove the security program’s success. This new approach means teams can control risk across the business – and prove it.

Media Contact:
Michelle Kearney
Hi-Touch PR
443-857-9468
kearney@hi-touchpr.com

View original content to download multimedia:https://www.prnewswire.com/news-releases/legit-security-enhances-secrets-detection–prevention-with-a-single-integrated-view-of-all-secrets-findings-and-recovery-actions-across-the-sdlc-including-within-personal-github-repos-302331671.html

SOURCE Legit Security

Related Topics:
Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Technology

BearCom Announces Transformative Acquisition of Stone Security

Published

36 minutes ago

on

December 20, 2024

By

Transaction to Enhance BearCom’s Physical Security Offering and Position Company as a Leading End-to-End Integrator of Advanced Voice, Security and Data Solutions

GARLAND, Texas and SALT LAKE CITY, Dec. 20, 2024 /PRNewswire/ — BearCom, a premier North American integrator of voice, security and data solutions, today announced the acquisition of Stone Security, a leading provider of enterprise class physical security products and services. Terms of the transaction were not disclosed.

The addition of Stone Security’s industry leading physical security expertise to BearCom’s existing security solutions portfolio further cements BearCom’s position as a leading end-to-end integrator of advanced voice, security and data solutions.

Founded in 2005, Stone Security is a trusted global security integrator with 12 offices across the United States, Mexico and Brazil. Stone Security designs and delivers comprehensive security systems that enhance the safety and efficiency of its expansive customer base. With its best-in-class suite of security solutions, Stone Security supports a diverse range of enterprise-level customers across multiple verticals, including educational institutions, municipalities, transportation, distribution centers and data centers.

“Stone Security has been a leader in security integration for almost two decades and I am thrilled to welcome them to the BearCom family. Their tremendous growth is a direct result of their ability to design and deliver highly technical security solutions, combined with high integrity, and a dedication to their customers and employees,” said Les Fry, CEO of BearCom. “Stone Security brings more than 225 highly trained, technically advanced team members and a geographical footprint that will further solidify our position as a trusted partner for our customers on business and mission-critical security matters.”

“BearCom is a clear leader in the communications industry, and we have long been impressed by their ability to integrate advanced solutions to solve the critical safety and security needs of their customers,” said Brent Edmunds, CEO of Stone Security. “We are looking forward to joining the BearCom family and working with Les and his team to expand our customer offerings and provide our high-level service at an even greater scale.”

BearCom’s acquisition of Stone Security marks the company’s second acquisition since Siris’ initial 2023 investment and is an important milestone as BearCom continues to expand its capabilities across the physical security space.

“The acquisition of Stone Security is transformational and highly complementary for BearCom,” said Dave Calamai, Managing Director at Siris. “By leveraging Stone Security’s leadership position in the video surveillance and access control space, BearCom can provide a unique, end-to-end security solution suite across the Americas. We are excited to partner with Stone Security’s founders to accelerate growth.”

“Stone Security’s commitment to providing high-quality, reliable security solutions and building customer trust will be invaluable as BearCom continues to build out its physical security offerings,” added Tom Echols, BearCom’s Vice President of Security Solutions. “We are excited to work with Stone Security during this next chapter of growth.”

Stone Security’s strong, loyal partnerships with Axis, LenelS2, Milestone and Wesco will continue to be an instrumental part of their business model. Additionally, Stone’s three operating founders, Brent Edmunds, Joey Edmunds and Aaron Simpson, will remain with the company and play a key role in shaping BearCom’s security strategy moving forward.

Finn Dixon & Herling LLP and Norton Rose Fulbright LLP served as legal advisors to BearCom. Buchalter PC served as legal advisor to Stone Security.

About BearCom

Founded in 1981, BearCom is Motorola’s largest Channel Partner in North America, and a leading provider and integrator of wireless voice, security and data solutions across the U.S. and Canada. BearCom is headquartered in Garland, Texas. www.bearcom.com

About Stone Security  

Stone Security is a provider of professional, enterprise class, physical security products and services. The terms that define the way Stone approaches the integration business are – open platform, industry leading and partnership driven. With these principles as a foundation, Stone has chosen products that deliver high functioning, integrated and flexible physical security systems. Stone currently manages full-time operations in twelve states across the U.S. as well as two countries in Latin America. www.stonesecurity.net

View original content to download multimedia:https://www.prnewswire.com/news-releases/bearcom-announces-transformative-acquisition-of-stone-security-302337428.html

SOURCE BearCom

Continue Reading

Technology

ITRI Partners With PTS to Create AI Sign Language Weather Broadcaster

Published

36 minutes ago

on

December 20, 2024

By

HSINCHU, Dec. 20, 2024 /PRNewswire/ — ITRI and Public Television Service (PTS) have announced a joint project on developing an AI sign language weather broadcaster. Through this collaboration, the AI sign language weather broadcaster is projected to go live as early as the second half of 2025. This partnership aims to increase the accessibility of weather information and enable deaf individuals to receive the latest warnings for natural disasters and other emergency incidents.

“Technology arises from human needs, and AI can play a key role in helping those in need,” said ITRI Chairman Tsung-Tsong Wu. “The collaboration between ITRI and PTS is a demonstration of inclusive technology that offers everyone equal opportunity to enjoy the benefits of AI. The AI sign language weather broadcaster is expected to compensate for the shortage of sign language interpreters and provide the deaf equitable access to information via mass media.”

Taiwan Broadcasting System and Taiwan Public Television Service (PTS) Foundation Chairperson Yuan-Hui Hu remarked that the PTS has been dedicated to producing sign language TV programs for the Deaf community and is actively leveraging technology to make the media environment more accessible to them. “Information equality is a fundamental value in modern society,” stated Hu. He hopes to help deaf individuals stay up to date during typhoons, earthquakes, and other emergencies through advanced communication technology.

ITRI Vice President and General Director of Information and Communications Research Laboratories Pang-An Ting remarked that ITRI began developing the AI sign language interpreter and building Taiwan’s sign language corpus in 2023. “Sign language is a visual language that conveys meaning through a combination of facial expressions and hand gestures. An AI sign language broadcaster requires high-precision skeleton estimation technology and deep learning gesture generation models to accurately present hand movements. This is much more complicated than current AI audio and video broadcasting, which deals with speech generation and lip-syncing technologies,” he explained.

Dr. Ting further pointed out that sign language evolves with variations in local dialects, emphasizing the need to build a sign language corpus in Taiwan. “We need both professional sign language interpreters and members from the Deaf community to work together to build the corpus. We hope that this collaborative project will promote information equality and also preserve Taiwan’s sign language as an important cultural asset,” he said.

Media Contact

Annie Wu
Office of Marketing Communications, ITRI
+886-3-591-8406
aiyunwu@itri.org.tw 

About ITRI

Industrial Technology Research Institute (ITRI) is one of the world’s leading technology R&D institutions aiming to innovate a better future for society. Founded in 1973, ITRI has played a vital role in transforming Taiwan’s industries from labor-intensive into innovation-driven. To address market needs and global trends, it has launched its 2035 Technology Strategy and Roadmap that focuses on innovation development in Smart Living, Quality Health, Sustainable Environment, and Resilient Society.

Over the years, ITRI has been dedicated to incubating startups and spinoffs, including well-known names such as UMC and TSMC. In addition to its headquarters in Taiwan, ITRI has branch offices in the U.S., Germany, Japan, and Thailand in an effort to extend its R&D scope and promote international cooperation across the globe. For more information, please visit https://www.itri.org/eng.

View original content to download multimedia:https://www.prnewswire.com/news-releases/itri-partners-with-pts-to-create-ai-sign-language-weather-broadcaster-302337430.html

SOURCE Industrial Technology Research Institute

Continue Reading

Technology

New Property Inspection Software for Apartments, HUD and Rural Development, Housing, Hotels, Hospitals, and Commercial Properties by Inspect2go

Published

36 minutes ago

on

December 20, 2024

By

Inspect2go provides property inspection software for apartments, HUD housing, rural development housing, single-family homes, hotels, hospitals, and commercial properties. Inspect properties using mobile phones or tablets to document violations, take photos, and issue work orders.

SAN CLEMENTE, Calif., Dec. 20, 2024 /PRNewswire-PRWeb/ — Inspect2go provides property inspection software, property inspection management systems, and mobile applications. Users conduct inspections using a tablet, phone, or iPad/iPhone mobile app. System modules include web-based management dashboards, inspection schedules, work orders, and reporting. Programs cover public housing, residential rental property inspection applications, HUD, rural development, apartment inspections, commercial property inspection systems, hotel inspection apps, and hospital inspection systems.

“Inspection Software for Property and Housing”.

Clients include property managers, property management companies, state and local government agencies. Users can inspect single-family properties, such as residential housing, single-family homes, and rental housing. Commercial property inspections cover multifamily rental properties, office buildings, factories, industrial manufacturing facilities, retail stores, warehouses, restaurants, and food establishments. The system also supports federally funded government housing inspections including multifamily apartment complexes and low-income/affordable housing units. Other versions are tailored for hotel room and hospital room inspections.

About Inspect2go

Inspect2go offers specialized software for city, county, and state-level government agencies. We serve public health, environmental health, engineering, building, code enforcement, and other departments that interact daily with the public. Products and services include public web portals for online citizen access, permitting and licensing software with online applications and payment processing, data migration, cloud (SQL) database hosting services, inspection mobile applications, and custom programming services to automate complex office workflows. Inspect2go products are web/cloud-based solutions with ongoing SaaS support and maintenance.

Media Contact

Paul Smith, Inspect2go Inc., 1 (949) 429-4620, marketing@inspect2go.com, https://inspect2go.com/

Twitter, LinkedIn

View original content to download multimedia:https://www.prweb.com/releases/new-property-inspection-software-for-apartments-hud-and-rural-development-housing-hotels-hospitals-and-commercial-properties-by-inspect2go-302336964.html

SOURCE Inspect2go Inc.

Continue Reading

Trending