GitGuardian, a cybersecurity platform that enables companies to detect sensitive data in public and private code repositories, has entered into a Series A round of financing with London-based Balderton Capital with GitHub co-founders Scott Chacon and Docker 12 Millions of dollars collected co-founder Solomon Hykes.
Founded in 2017, Paris-based GitGuardian searches all of GitHub's public activities in real time to identify private data such as database credentials, API keys, cryptographic keys, and more. The company works with more than 200 API vendors covering payment systems, cloud services, messaging apps, crypto-wallets, and more to ensure that private information entering the public domain is quickly identified Companies are notified. The French startup announced that it has sent more than 400,000 warnings since its inception.
The type of private data GitGuardian seeks to protect is known in the industry as "secrets" and includes anything unauthorized third parties can use to access a system (such as a cloud or a database) can be used, for. For example, passwords and API tokens.
Behind the Scenes, GitGuardian Associates GitHub Registered Developers with Their Companies and Scans the Content Every day, 2.5 million code commits are executed to find usernames and passwords, database connection string keys, SSL certificates, and more. The company said it uses "sophisticated pattern recognition" and machine learning techniques. The algorithm constantly learns through a "feedback loop" that takes into account feedback from developers regarding the accuracy of each alert. In fact, GitGuardian's customers help improve the technology by determining whether a warning was valid or not.
While monitoring public GitHub repositories is an integral part of GitGuardian's offering, it also works to identify sensitive information that is inadvertently distributed through internal systems, including private code repositories and news apps. Even companies that are keen to keep their code under wraps up when too many people in a company have access to it. The more people have access to "secrets", the more opportunities there are for these data to be compromised. This is commonly referred to as "secret propagation".
"Secrets that are too common in an organization are a big problem for security experts," said GitGuardian co-founder and CEO Jérémy Thomas to VentureBeat. "If there are secrets in the source code, only a single developer account needs to be compromised to compromise any secrets to which they have access."
Already in 2017, Uber issued A serious data breach has been revealed that exposed the personal information of millions of drivers and drivers. Later, Uber admitted that its GitHub account did not use multifactor authentication, meaning anyone who came across the credentials could freely access its private repositories. Through the GitHub repository, the intruders managed to find the access keys for Uber's AWS datastore, where the user data was stored.
In a 2018 Federal Trade Commission (FTC) announcement, Uber revealed how the intruders managed to gain access to the private GitHub repository at all – that's what Uber granted his engineers over their own GitHub accounts, which had weak security, access to the private repositories. The submission noted:
Uber gave its engineers access to Uber's GitHub repositories through engineers' individual GitHub accounts, which engineers generally access via personal e-mail addresses. Uber did not have a policy prohibiting engineers from re-using credentials, and did not require technicians to enable multi-factor authentication when accessing Uber's GitHub repositories. The intruders who committed the 2016 breach claimed that they had accessed passwords on Uber's GitHub page that had previously been exposed to other large data breaches. They then discovered the AWS access key, which they used to access and download files from Uber's Amazon S3 data store.
As a result, the attackers accessed 16 files containing unencrypted personal information, including nearly 26 million names and email addresses, 22 million names and mobile phone numbers, and 607,000 names and driver license numbers.
Despite bad password hygiene, Uber's AWS access keys should probably not have been near a GitHub repository – either privately or otherwise. And that shows what business is about. Endangering customer data and losing trust is certainly a big problem. However, inadequate security can also lead to legal and regulatory disputes.
Rules and Industry Standards and Best Practices, "noted Thomas.
Regarding Uber, which initially covered up its gigantic leak, it was widely believed to have breached numerous privacy and privacy reporting laws, and the case was finally closed with a $ 148 million fine. And GitGuardian claims that this sort of scenario can prevent GitGuardian from detecting a warning and sending it to the developer and security team within four seconds after a secret has entered code repositories.
"Any company today Software development is about secrets that spread within the enterprise and, at worst, in the public domain," said Thomas. "As a company with so much confidential information, we have built a culture of unconditional secrecy."
GitGuardian said it has helped more than 100 of the Fortune 500 companies, government organizations, and thousands of companies have individual developers. With another $ 12 million in the bank, the company plans to expand its US customer base, where 75% of its current customers are located.
About 40 million developers use GitHub and more than 100 million repositories Microsoft's proprietary code collaboration platform is fertile ground for any business that wants to train algorithms because of the huge amount of data. A few months ago, Swiss startup DeepCode raised $ 4 million for a system that learns from GitHub project data to provide developers with automated code reviews. GitGuardian has a similar philosophy regarding the use of GitHub to scale algorithms so that companies can further automate their cybersecurity facility and how it should be, but with automated visibility and protection, such as using data, credentials, and other sensitive information and be shared, "said Suranga Chandratillake, partner of Balderton Capital.