Mackenzie Jackson
GitGuardian Blog - Automated Secrets Detection

Mackenzie Jackson is the Security Researcher & Advocate, Aikido As a security researcher and advocate at Aikido, Mackenzie spends his days translating security jargon into human speak and convincing developers that they can care about security without sacrificing their will to live. He loves creating and advocating for security tools that easily integrate into the development process, focusing on reducing alert fatigue and improving the overall developer experience in security implementations. Before joining Aikido, Mackenzie served as a developer advocate at GitGuardian for more than four years and co-founded and acted as chief technology officer (CTO) for Conpago, a technology company focused on combating social isolation among the elderly through innovative communication devices. Mackenzie is the host of The Security Repopodcast, where he explores emerging tech topics in cybersecurity and interviews other experts. In his personal time he brings cybersecurity stories to life in The Red Team Chronicles comic series. Mackenzie also regularly speaks at tech conferences like DevOxx, DefCon, NDC and BlackAlps.

Crappy code, crappy Copilot. GitHub Copilot is writing vulnerable code and it could be your fault

Mackenzie Jackson | August 23, 2022 | Conferences

The promise of AI code assistance like Copilot was an exciting promise when released. But they might not be the answer to all your problems. A research study has now found that while Copilot frequently introduces vulnerabilities, it may in fact be influenced by the input. Poor code, poor outcome ... Read More

GitGuardian Blog - Automated Secrets Detection

Black Hat 25 – What you need to know

Mackenzie Jackson | August 22, 2022 | Conferences

Missed out on Black Hat 2022 briefings or got stuck in the business hall? We have you covered ... Read More

GitGuardian Blog - Automated Secrets Detection

Securing your SDLC (Software Development Life Cycle)

Mackenzie Jackson | May 18, 2022 | Best Practices

In this post, we are going to break down the SDLC and look at how we can add security at each stage with helpful resources ... Read More

GitGuardian Blog - Automated Secrets Detection

Securing your SDLC (Software Development Life Cycle)

Mackenzie Jackson | May 18, 2022

Building security into our applications is widely considered to be an important priority in mature companies. But even still it is often overlooked at earlier stages of the development making the cost of security exponentially higher the later in the process we start to consider it. In this post, we ... Read More

GitGuardian Blog - Automated Secrets Detection

How Hackers Used Stolen GitHub Tokens to Access Private Source Code

Mackenzie Jackson | April 20, 2022 | Breach explained

Attackers have used stolen OAuth tokens issued to Travis CI and Heroku to gain access to private git repositories on GitHub. Here we take a look at exactly what happened, why it's significant, and how to mitigate the issue ... Read More

GitGuardian Blog - Automated Secrets Detection

Latest from Lapsus$, Reviewing the Microsoft Breach

Mackenzie Jackson | March 25, 2022 | Breach explained

Lapsus$ has continued its prolific pace of breaches now leaking internal source code from 250 Microsoft projects. GitGuardian analyzed the code looking for secrets sprawl ... Read More

GitGuardian Blog - Automated Secrets Detection

credentials EUAC CUI classified secrets SMB

Secrets Detection: An Emerging AppSec Category

Mackenzie Jackson | April 8, 2021 | Cybersecurity, repository manager, Secrets, Software Development

Applications are no longer standalone monoliths, they now rely on thousands of independent building blocks: cloud infrastructure, databases, SaaS components such as Stripe, Slack and HubSpot, just to name a few. This is a significant shift in software development. Secrets are the glue that connects these different application building blocks ... Read More

Security Boulevard

Crappy code, crappy Copilot. GitHub Copilot is writing vulnerable code and it could be your fault

Black Hat 25 – What you need to know

Securing your SDLC (Software Development Life Cycle)

Securing your SDLC (Software Development Life Cycle)

How Hackers Used Stolen GitHub Tokens to Access Private Source Code

Latest from Lapsus$, Reviewing the Microsoft Breach

Secrets Detection: An Emerging AppSec Category

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On