Blog

Nightfall News

Top stories

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.

How Nightfall Brings AI-Native Context-Aware DLP to Microsoft 365

Nightfall DLP provides full visibility across Microsoft 365, from Exchange to SharePoint.

The Cloudflare Breach: Why Supply Chain Security Can't Be an Afterthought in 2025

The Cloudflare breach is the latest reminder: your supply chain is your attack surface.

The xAI Wake-Up Call: A CISO's Guide to Preventing Data Exfiltration

Insiders have the ultimate exploit: legitimacy. That’s why insider threats are so dangerous. They look normal. Until it’s too late.

Securing Shadow AI: 6 Principles from Security Leaders Who've Been There

Safe AI adoption isn’t about restriction. It’s about visibility, guidance, and smart governance.

The Workday Breach: Why Your DLP Strategy Is Already Obsolete

Workday disclosed a breach that exposed customer data through a sophisticated ShinyHunters campaign. Read why this isn’t just another incident: it's proof that traditional DLP is obsolete.

Nightfall Product Updates & News: July/August 2025

See Nightfall's new AI-driven features and platform enhancements designed to make your DLP workflows smarter, faster, and more precise.

Designing an Agentic AI Copilot: 8 Principles from Building Nyx

While building Nyx, Nightfall's agentic AI copilot for security teams, our team spent a lot of time thinking about how to make her an effective team member. These are the 8 principles that guided us.

The Nightfall Approach: 5 Ways Our Shadow AI Coverage Differs from Generic DLP

Everyone’s talking about Shadow AI risk. But not all coverage is created equal

Data Flow: Why Most Organizations Don’t Understand Their Information Movement

If you don’t know where your data goes, you can’t protect it.

How LLMs Are Changing DLP, And Why That’s a Good Thing

AI is transforming data loss prevention. Here’s why that matters for your security team.

Build vs. Buy: How AI is Shaping Your Next DLP Decision

As AI reshapes the security landscape, every security leader faces a critical question: Should you build your own DLP tools, or buy solutions already powered by AI?

Nightfall Product Updates & News: May/June 2025

Product news and updates from Nightfall: improved dashboard, new detectors, and a lot more.

From Code to Conversations: How Modern AI Creates New Classes of Data Risk

Chasing AI productivity gains can come with a hidden cost: invisible data exposure

Now Available: AI-Powered Data Loss Prevention for Microsoft Exchange Online

The Reality Behind Exchange Online DLP: What Customers Actually Experience

The Missing Layer: Email Protection That Exchange Online and Gmail Users Urgently Need

Go beyond legacy DLP tools to get comprehensive email protection

Beyond Attachments: How Email Becomes Your Biggest Data Exfiltration Vector

Email has become one of the most notorious data exfiltration vectors

Enabling Safe AI Adoption: Insights from Nightfall AI and Vanta

A discussion with Rohan Sathe, Co-founder of Nightfall AI, and Unni Patel, Senior Product Manager at Vanta

Nightfall’s Spring 2025 Product Launch Brings DLP to the AI Era

Nightfall's Approach: Enabling secure AI adoption

Why Partial DLP Coverage Leaves Your Data Exposed – And How to Fix It

“We have a DLP tool, but we still had no idea this much data was exposed.”

Building DLP for a ChatGPT World

Legacy DLP wasn’t built to protect data from gen AI use

Nightfall Product Updates & News: April 2025

G2 Recognizes Nightfall as Data Loss Prevention (DLP) Leader for Spring 2025

Secure API Keys and Passwords with Nightfall’s AI-Native DLP

Secure APIs and Passwords with Nightfall’s AI-Native DLP

Insider Risk with Nightfall DLP: Episode 2 - Managing Shadow AI

Nightfall DLP makes it easy to enforce policies to combat shadow AI and keep critical data safe

The Essential DLP Checklist for Digital Health and Life Sciences

Protect PHI and PII with Nightfall's Essential DLP Checklist for Health Tech and Life Sciences

Why the Future of DLP Is Invisible, Invincible, and Inexpensive

See how the 3 I’s of DLP are built into everything Nightfall does when protecting sensitive data across endpoints and SaaS

Insider Risk with Nightfall DLP: Episode 1 - Prevent Personal Cloud Store Uploads

Insider risk illustrated, with Nightfall DLP

How to Prevent Sensitive Data Exposure to AI Chatbots Like DeepSeek

Three simple DLP strategies can prevent sensitive data from getting exposed to AI chatbots like DeepSeek

Nightfall Releases the 2025 State of Secrets Exposure Report

This year's report offers a look at what changed, what stayed the same, and where you can find a little hope in the quest for effective secrets management.

What is Data Lineage and Why Does it Matter in Data Loss Prevention?

Discover what data lineage is and why combining data lineage with AI-driven classification is critical for modern DLP strategies. Learn how tracking data's origin and movement while accurately identifying sensitive content prevents leaks in SaaS, AI, and cloud environments.

Here’s What We Can Learn from the Cyberhaven Incident

In December 2024, Cyberhaven fell victim to a sophisticated cyberattack that exploited a phishing campaign targeting its Chrome Web Store account. This breach compromised over 400,000 users by injecting malicious code into its browser extension, exfiltrating sensitive data such as cookies and session tokens. The incident ...

Safetica DLP: Comprehensive Analysis & Top Alternatives in 2025

In-depth Safetica DLP guide: explore features, real-world limitations, and how it compares to modern solutions like Nightfall AI for GenAI and cloud data security.

CrowdStrike DLP: Comprehensive Review & Top Alternatives in 2025

In-depth 2025 CrowdStrike DLP guide: explore features, real-world limitations, and how it compares to modern solutions like Nightfall AI for GenAI and cloud data security.

Code42 Incydr: The Essential Analysis with 50+ FAQs and Top Alternatives

Code42 Incydr is among the legacy solutions aiming to mitigate insider threats, yet it doesn’t always meet every organization’s needs. In the following article, we examine Code42’s capabilities and limitations through a 60-question FAQ that addresses everything you'd want to know when evaluating DLP and IRM solutions.

Forcepoint DLP: Comprehensive Review and Top Alternatives in 2025

Discover Forcepoint DLP’s features, limitations, and top alternatives. Learn how AI-driven solutions like Nightfall can protect data more effectively.

Symantec DLP: Comprehensive Review and Top Alternatives in 2025

Discover Symantec DLP’s features, limitations, and top alternatives. Learn how AI-driven solutions like Nightfall can protect data more effectively.

The 12 Best Data Loss Prevention Software Solutions of 2025 and 50+ FAQs Answered

Learn more about the top 12 best data loss prevention software solutions that can help you protect sensitive data and address 50+ FAQs to guide your evaluation of the top DLP solutions.

The 7 Most Telling Data Breaches of 2024

Get the skinny on which 2024 breaches signal the biggest data security threats, trends, and shifts.

People Problem or Data Problem? Risks and Mitigation of Insider Threats

What are insider threats, and how can you defend against them?

Understanding the Limitations of Atlassian Guard DLP: What You Need to Know

Atlassian collaboration apps enable tremendous productivity, but the way most teams use them poses great risks to your data. Should you use native Atlassian DLP, or look to external cloud DLP to mitigate those risks? Take a deep dive into functionality, advantages, disadvantages, and more to find the right solution for your needs.

Loose AWS API keys: what's your real risk?

While malicious actors can gain access to systems in any number of ways, using your API key is the equivalent of walking through a wide-open door and walking in unchecked. Whoever holds that key will have direct access to what are likely your most valuable digital assets.

Intelligent Data Classification: Transforming Google Drive Security

Customers need an automated, dynamic, and human-centric cloud DLP solution to label and classify data in Google Drive.

How To Prevent Secrets Sprawl

Where are your credentials and secrets, and how are you protecting them?

DLP 101: How to Prevent Data Exfiltration in the Cloud

What is data exfiltration, and how can cloud Data Loss Prevention (DLP) help defend against it?

10 Essential Guidelines For Enterprise-Ready AI Solutions

AI-powered solutions are becoming increasingly prevalent in enterprise environments, leading to a new trend in procurement: the need for comprehensive AI governance frameworks.

Nightfall Named A Leader in Data Loss Prevention by G2

Nightfall leads the way in Data Loss Prevention Software, Data Security Software, and Sensitive Data Discovery Software.

Nightfall AI Honored as Winner of the 2024 SC Awards

Nightfall has been recognized in the Best Data Security Solution and Best Insider Threat Solution categories.

5 Steps to Send An Encrypted Email in Gmail

Discover how to send encrypted emails in Gmail using Nightfall’s AI-powered encryption tools.

Prompt Sanitization: 5 Steps for Protecting Data Privacy in AI Apps

Content filtering and prompt sanitization are key for maintaining security and trust in LLM apps.

Nightfall AI selected as 2024 SC Awards Finalist

Nightfall AI has been recognized as a 2024 SC Award finalist in the Trust Award categories for Best Data Security Solution and Best Insider Threat Solution.

DLP 101: What is data loss prevention, and why do you need it?

Learn how you can leverage data loss prevention products for continuous data security and compliance.

2024 State of Secrets Report

Do you know where your most sensitive secrets are shared across the cloud? Based on Nightfall’s latest report, odds are that some of them have slipped through the cracks.

How to Send Encrypted Emails in Gmail in 5 Easy Steps

Discover how to send encrypted emails in Gmail using Nightfall’s AI-powered encryption tools.

Let's chat at Black Hat!

Excited for Black Hat? So are we. Let's meet! We'd love to meet with you to learn more about your data security pain points and share a bit more about our AI-powered solution.

Key Learnings from the Disney Breach: 5 Ways to Stop Secret Sprawl

The Disney breach is a wake-up call for any organization that may have secrets sprawled across their tech stack.

8 Best Data Leak Prevention (DLP) Policies for Protecting Your Sensitive Data

These popular DLP policies are useful tools for protecting your sensitive data, preventing data exfiltration, securing your AI usage, and more.

Nightfall Named A Leader in Data Loss Prevention (DLP) by G2

Nightfall leads the way in G2’s Summer ‘24 reports.

Employee Spotlight: Amit Nene, Engineering Leader

Meet the newest addition to the engineering team at Nightfall AI.

Secure Your AI apps and data pipelines with Nightfall’s Firewall for AI

Nightfall’s Firewall for AI acts as a trust boundary that protects sensitive company and customer data during every stage of AI model building and consumption.

Is Slack using your data to train their AI models? Here’s what you need to know.

With Slack’s AI training policy in the spotlight, it’s time to consider how you can take security for AI into your own hands.

Building your own AI app? Here are 3 risks you need to know about—and how to mitigate them.

From training to annotation to fine-tuning and beyond, here’s how a firewall for AI can help you stay secure as you build your AI model.

5 things you need to know to build a firewall for AI

As organizations expand their use of AI apps, it's important to have a scalable data leak prevention (DLP) solution in place.

4 key takeaways from the 2024 Verizon Data Breach Investigations Report

What are the most common kinds of data breaches—and how can you protect your data against them?

Employee Spotlight: James Jaconetti, VP of Customer Success

Meet the newest addition to the Customer Success team at Nightfall AI.

Top 5 SaaS misconfigurations to avoid and why

It’s essential to be proactive about managing your security posture across SaaS apps like Google Drive and Microsoft OneDrive. Read on to learn why—and how—you can do just that.

Here’s what caused the Sisense data breach—and 5 tips for preventing it

Learn what you can do to stop data sprawl and prevent privilege escalation attacks.

Nightfall named a “Data Security Solution of the Year”

Nightfall has been named a “Data Security Solution of the Year” by the Data Breakthrough Awards.

Securing AI with Least Privilege

In the rapidly evolving AI landscape, the principle of least privilege is a crucial security and compliance consideration.

Firewalls for AI: The Essential Guide

As organizations increasingly build AI applications, firewalls for AI are an important component of modern data security strategies.

Nightfall Named A Leader in Data Loss Prevention (DLP) by G2

Nightfall leads the way in G2’s Spring ‘24 reports.

5 Expert Tips for Protecting Your Enterprise’s Sensitive Data

Join Nightfall’s investors for insights on how to defend enterprise data against new and evolving threats.

Nightfall was built on AI. Here’s how we’re advancing our mission to scale data protection in the enterprise.

As we continue to innovate, Nightfall's central mission is to empower enterprises big and small to navigate the digital world with confidence, while ensuring the security and privacy of their sensitive data.

Prevent security drift with Nightfall SaaS Security Posture Management (SSPM)

SaaS Security Posture Management, or SSPM, is a critical tool for governing data and managing risk within the enterprise.

Navigating Data Privacy for GenAI in Customer Support

As GenAI transforms customer support, data privacy remains paramount.

Nightfall AI releases GenAI-powered Sensitive Data Protection for the enterprise

From detection to remediation to education, Nightfall’s ultimate goal is to use GenAI to help security teams find peace of mind, knowing their company and customer data is secure across the cloud and beyond.

Nightfall AI launches data encryption and sensitive data protection for emails

In a world where data breaches are increasingly costly (and common), Nightfall has innovated a simpler and more streamlined solution to protecting sensitive data in emails and beyond.

Reduce insider risk with Nightfall Data Exfiltration Prevention

Insider risk is a challenging issue for the enterprise, and unfortunately, legacy DLP falls short. But with Nightfall’s advancements in GenAI, security teams can stop insider risks before they escalate.

Nightfall AI Transforms Enterprise DLP with AI-Native Platform

Nightfall's new enterprise capabilities expand cloud DLP use cases for AI-powered data security.

Nightfall expands its platform to meet modern enterprise DLP challenges

Legacy DLP never worked. Enter: Nightfall AI, the AI-native data leak prevention (DLP) platform.

New at Nightfall: February '24 Product Update

From platform enhancements to time-saving features, here’s how Nightfall improved the customer experience this month.

Done with traditional DLP? Here’s how generative AI can help.

Tired of being overwhelmed by alerts? Discover how generative AI can transform your DLP solution.

New at Nightfall: January '24 Product Updates

From platform enhancements to time-saving features, Nightfall has made several updates to simplify our customer experience.

4 Tips For Staying Ahead of Cybersecurity Threats in 2024

From prompt injection to to privilege escalation, these are the security threats you need to be prepared for in 2024.

Streamline your security workflows with these 3 shortcuts in Tines

Create your own custom cloud DLP workflows by integrating Nightfall with Tines.

The ultimate guide to security for AI

From regexes to transformer models, here’s how you can leverage AI and machine learning for better sensitive data detection.

Nightfall’s new GenAI detectors are revolutionizing the cloud DLP landscape. Here’s how.

Learn how Nightfall’s detection engine stacks up against AWS Comprehend, Google DLP, and Microsoft Purview.

Nightfall AI Launches Human Firewall Feature to Help SecOps Teams Tackle High-Volume Alerts with Velocity

What is a human firewall, and how can it help you strengthen your security posture?

Employee Spotlight: Rick Wootten, VP of Marketing

Meet the newest addition to the Nightfall AI team.

Introducing Cloud DLP for Microsoft Teams

Learn how Nightfall ensures security and compliance for Microsoft Teams.

Nightfall Launches Cloud DLP for Microsoft Teams

Introducing cloud DLP for Microsoft Teams.

3 Things You Need to Know About the Okta Breach

The recent Okta breach serves as a crucial reminder to safeguard sensitive information like credentials and session tokens. Here's what you need to stay protected.

New at Nightfall: October '23 Product Updates

Introducing six new Nightfall product updates.

How to Discover and Protect Sensitive Data in HAR Files

4 ways to secure your HAR files.

Introducing Nightfall for Notion

Nightfall for Notion stops sensitive data such as PHI, PII, secrets, and keys from leaking into Notion pages.

Nightfall AI and Snyk Partner to Offer Developers AI-Powered Secrets Scanning

Snyk will co-sell Nightfall's cloud Data Leak Prevention (DLP) platform to keep developers' secrets secure while they work in SaaS apps like GitHub, Slack, and Jira.

Nightfall Partnered with Snyk to Make Developers’ Lives Easier. Here’s How.

Developers, meet the secrets scanning dream team.

AI Development Tools that Security Teams Should Know About and How to Secure Them

AI development tools introduce a number of new security challenges. Here's how to stay secure.

Improve Your Alert Triage Process In Just 3 Steps

What exactly is alert triage, and how can you use it to strengthen your business against rising cyber threats?

New at Nightfall: September ‘23 Product Updates

We’ve made several exciting enhancements to the Nightfall platform this month, including multiple new features as well as a more streamlined user experience.

Nightfall Named A Leader in Data Loss Prevention (DLP) by G2

Nightfall leads the way in G2’s Fall ‘23 reports.

More stories

Blog

Is Slack Secure from Threat Actors & Hackers in 2023?

When Uber was breached in September, the hacker remained undetected until they announced their presence within the org via Slack. This incident provides yet another example of Slack being leveraged by an attacker. In this post, we’re going to review some of the ways attackers have used Slack in breaches, why this is happening, and what you can do about it.

Michael Osakwe

November 22, 2022

Blog

An Overview of the California Data Breach Notification Law (+Compliance Template)

Many states in the US have data privacy and protection statutes as part of their legal codes. For the most part, these codify what types of PII/PI constitute a data breach, as well as when and how an entity doing business should communicate with customers if a data breach occurs.

Michael Osakwe

November 18, 2022

Blog

How to Use Data Loss Prevention (DLP) for LGPD Compliance

The Brazilian General Data Protection Law (LGPD) came into effect on August 16, 2020. The law creates new rights for individuals with respect to their data and imposes significant obligations on companies that process personal data. This guide will provide an overview of the key provisions of the LGPD and explain the steps that companies must take to comply with the law.

Strong data loss prevention requires two things: a strong policy that guides user actions and permissions, and the tools to monitor and manage data security. Many organizations know they need to invest in software, platforms, and other security settings to create secure networks, endpoints, and cloud settings. But not every organization has a strong DLP policy to guide these tools.

Emily Heaslip

October 4, 2022

Blog

Why Data Loss Prevention strategy is core to successful M&A

When two companies merge, there is typically a lot of data that needs to be transferred between the two organizations. This data may include confidential information such as customer records, financial reports, and employee data. If this data falls into the wrong hands, it could be used to commit fraud or theft. That's where data loss prevention (DLP) comes in.

Isaac Madan

October 4, 2022

Blog

Your Definitive Guide to Data Security Posture Management (DSPM)

With high-profile data breaches making headlines on a regular basis, it's no wonder that data security is top of mind for so many organizations. But what exactly is data security posture management (DSPM)? In this blog post, we'll take a closer look at DSPM and how it can help your business keep its data safe and secure.

Michael Osakwe

September 30, 2022

Schedule a live demo

Tell us a little about yourself and we'll connect you with a Nightfall expert who can share more about the product and answer any questions you have.