.webp)
.webp)
Blog
Nightfall News
Top stories
.png)
How Nightfall Brings AI-Native Context-Aware DLP to Microsoft 365
Nightfall DLP provides full visibility across Microsoft 365, from Exchange to SharePoint.
.png)
The Cloudflare Breach: Why Supply Chain Security Can't Be an Afterthought in 2025
The Cloudflare breach is the latest reminder: your supply chain is your attack surface.
.png)
The xAI Wake-Up Call: A CISO's Guide to Preventing Data Exfiltration
Insiders have the ultimate exploit: legitimacy. That’s why insider threats are so dangerous. They look normal. Until it’s too late.
.png)
Securing Shadow AI: 6 Principles from Security Leaders Who've Been There
Safe AI adoption isn’t about restriction. It’s about visibility, guidance, and smart governance.
The Workday Breach: Why Your DLP Strategy Is Already Obsolete
Workday disclosed a breach that exposed customer data through a sophisticated ShinyHunters campaign. Read why this isn’t just another incident: it's proof that traditional DLP is obsolete.
Nightfall Product Updates & News: July/August 2025
See Nightfall's new AI-driven features and platform enhancements designed to make your DLP workflows smarter, faster, and more precise.
.png)
Designing an Agentic AI Copilot: 8 Principles from Building Nyx
While building Nyx, Nightfall's agentic AI copilot for security teams, our team spent a lot of time thinking about how to make her an effective team member. These are the 8 principles that guided us.
.png)
The Nightfall Approach: 5 Ways Our Shadow AI Coverage Differs from Generic DLP
Everyone’s talking about Shadow AI risk. But not all coverage is created equal
.png)
Data Flow: Why Most Organizations Don’t Understand Their Information Movement
If you don’t know where your data goes, you can’t protect it.
How LLMs Are Changing DLP, And Why That’s a Good Thing
AI is transforming data loss prevention. Here’s why that matters for your security team.
.png)
Build vs. Buy: How AI is Shaping Your Next DLP Decision
As AI reshapes the security landscape, every security leader faces a critical question: Should you build your own DLP tools, or buy solutions already powered by AI?
Nightfall Product Updates & News: May/June 2025
Product news and updates from Nightfall: improved dashboard, new detectors, and a lot more.
From Code to Conversations: How Modern AI Creates New Classes of Data Risk
Chasing AI productivity gains can come with a hidden cost: invisible data exposure
.png)
Now Available: AI-Powered Data Loss Prevention for Microsoft Exchange Online
The Reality Behind Exchange Online DLP: What Customers Actually Experience
.png)
The Missing Layer: Email Protection That Exchange Online and Gmail Users Urgently Need
Go beyond legacy DLP tools to get comprehensive email protection
.png)
Beyond Attachments: How Email Becomes Your Biggest Data Exfiltration Vector
Email has become one of the most notorious data exfiltration vectors
.png)
Enabling Safe AI Adoption: Insights from Nightfall AI and Vanta
A discussion with Rohan Sathe, Co-founder of Nightfall AI, and Unni Patel, Senior Product Manager at Vanta
Nightfall’s Spring 2025 Product Launch Brings DLP to the AI Era
Nightfall's Approach: Enabling secure AI adoption
Why Partial DLP Coverage Leaves Your Data Exposed – And How to Fix It
“We have a DLP tool, but we still had no idea this much data was exposed.”
.png)
.png)
G2 Recognizes Nightfall as Data Loss Prevention (DLP) Leader for Spring 2025
G2 Recognizes Nightfall as Data Loss Prevention (DLP) Leader for Spring 2025
Secure API Keys and Passwords with Nightfall’s AI-Native DLP
Secure APIs and Passwords with Nightfall’s AI-Native DLP
.png)
Insider Risk with Nightfall DLP: Episode 2 - Managing Shadow AI
Nightfall DLP makes it easy to enforce policies to combat shadow AI and keep critical data safe
The Essential DLP Checklist for Digital Health and Life Sciences
Protect PHI and PII with Nightfall's Essential DLP Checklist for Health Tech and Life Sciences
Why the Future of DLP Is Invisible, Invincible, and Inexpensive
See how the 3 I’s of DLP are built into everything Nightfall does when protecting sensitive data across endpoints and SaaS
Insider Risk with Nightfall DLP: Episode 1 - Prevent Personal Cloud Store Uploads
Insider risk illustrated, with Nightfall DLP
How to Prevent Sensitive Data Exposure to AI Chatbots Like DeepSeek
Three simple DLP strategies can prevent sensitive data from getting exposed to AI chatbots like DeepSeek
Nightfall Releases the 2025 State of Secrets Exposure Report
This year's report offers a look at what changed, what stayed the same, and where you can find a little hope in the quest for effective secrets management.
What is Data Lineage and Why Does it Matter in Data Loss Prevention?
Discover what data lineage is and why combining data lineage with AI-driven classification is critical for modern DLP strategies. Learn how tracking data's origin and movement while accurately identifying sensitive content prevents leaks in SaaS, AI, and cloud environments.
Here’s What We Can Learn from the Cyberhaven Incident
In December 2024, Cyberhaven fell victim to a sophisticated cyberattack that exploited a phishing campaign targeting its Chrome Web Store account. This breach compromised over 400,000 users by injecting malicious code into its browser extension, exfiltrating sensitive data such as cookies and session tokens. The incident ...
Safetica DLP: Comprehensive Analysis & Top Alternatives in 2025
In-depth Safetica DLP guide: explore features, real-world limitations, and how it compares to modern solutions like Nightfall AI for GenAI and cloud data security.
CrowdStrike DLP: Comprehensive Review & Top Alternatives in 2025
In-depth 2025 CrowdStrike DLP guide: explore features, real-world limitations, and how it compares to modern solutions like Nightfall AI for GenAI and cloud data security.
Code42 Incydr: The Essential Analysis with 50+ FAQs and Top Alternatives
Code42 Incydr is among the legacy solutions aiming to mitigate insider threats, yet it doesn’t always meet every organization’s needs. In the following article, we examine Code42’s capabilities and limitations through a 60-question FAQ that addresses everything you'd want to know when evaluating DLP and IRM solutions.
Forcepoint DLP: Comprehensive Review and Top Alternatives in 2025
Discover Forcepoint DLP’s features, limitations, and top alternatives. Learn how AI-driven solutions like Nightfall can protect data more effectively.
Symantec DLP: Comprehensive Review and Top Alternatives in 2025
Discover Symantec DLP’s features, limitations, and top alternatives. Learn how AI-driven solutions like Nightfall can protect data more effectively.
The 12 Best Data Loss Prevention Software Solutions of 2025 and 50+ FAQs Answered
Learn more about the top 12 best data loss prevention software solutions that can help you protect sensitive data and address 50+ FAQs to guide your evaluation of the top DLP solutions.
The 7 Most Telling Data Breaches of 2024
Get the skinny on which 2024 breaches signal the biggest data security threats, trends, and shifts.
People Problem or Data Problem? Risks and Mitigation of Insider Threats
What are insider threats, and how can you defend against them?
Understanding the Limitations of Atlassian Guard DLP: What You Need to Know
Atlassian collaboration apps enable tremendous productivity, but the way most teams use them poses great risks to your data. Should you use native Atlassian DLP, or look to external cloud DLP to mitigate those risks? Take a deep dive into functionality, advantages, disadvantages, and more to find the right solution for your needs.
Loose AWS API keys: what's your real risk?
While malicious actors can gain access to systems in any number of ways, using your API key is the equivalent of walking through a wide-open door and walking in unchecked. Whoever holds that key will have direct access to what are likely your most valuable digital assets.
Intelligent Data Classification: Transforming Google Drive Security
Customers need an automated, dynamic, and human-centric cloud DLP solution to label and classify data in Google Drive.
How To Prevent Secrets Sprawl
Where are your credentials and secrets, and how are you protecting them?
DLP 101: How to Prevent Data Exfiltration in the Cloud
What is data exfiltration, and how can cloud Data Loss Prevention (DLP) help defend against it?
10 Essential Guidelines For Enterprise-Ready AI Solutions
AI-powered solutions are becoming increasingly prevalent in enterprise environments, leading to a new trend in procurement: the need for comprehensive AI governance frameworks.
Nightfall Named A Leader in Data Loss Prevention by G2
Nightfall leads the way in Data Loss Prevention Software, Data Security Software, and Sensitive Data Discovery Software.
Nightfall AI Honored as Winner of the 2024 SC Awards
Nightfall has been recognized in the Best Data Security Solution and Best Insider Threat Solution categories.
5 Steps to Send An Encrypted Email in Gmail
Discover how to send encrypted emails in Gmail using Nightfall’s AI-powered encryption tools.
Prompt Sanitization: 5 Steps for Protecting Data Privacy in AI Apps
Content filtering and prompt sanitization are key for maintaining security and trust in LLM apps.
Nightfall AI selected as 2024 SC Awards Finalist
Nightfall AI has been recognized as a 2024 SC Award finalist in the Trust Award categories for Best Data Security Solution and Best Insider Threat Solution.
DLP 101: What is data loss prevention, and why do you need it?
Learn how you can leverage data loss prevention products for continuous data security and compliance.
2024 State of Secrets Report
Do you know where your most sensitive secrets are shared across the cloud? Based on Nightfall’s latest report, odds are that some of them have slipped through the cracks.
How to Send Encrypted Emails in Gmail in 5 Easy Steps
Discover how to send encrypted emails in Gmail using Nightfall’s AI-powered encryption tools.
Let's chat at Black Hat!
Excited for Black Hat? So are we. Let's meet! We'd love to meet with you to learn more about your data security pain points and share a bit more about our AI-powered solution.
Key Learnings from the Disney Breach: 5 Ways to Stop Secret Sprawl
The Disney breach is a wake-up call for any organization that may have secrets sprawled across their tech stack.
8 Best Data Leak Prevention (DLP) Policies for Protecting Your Sensitive Data
These popular DLP policies are useful tools for protecting your sensitive data, preventing data exfiltration, securing your AI usage, and more.
Nightfall Named A Leader in Data Loss Prevention (DLP) by G2
Nightfall leads the way in G2’s Summer ‘24 reports.
Employee Spotlight: Amit Nene, Engineering Leader
Meet the newest addition to the engineering team at Nightfall AI.
Secure Your AI apps and data pipelines with Nightfall’s Firewall for AI
Nightfall’s Firewall for AI acts as a trust boundary that protects sensitive company and customer data during every stage of AI model building and consumption.
Is Slack using your data to train their AI models? Here’s what you need to know.
With Slack’s AI training policy in the spotlight, it’s time to consider how you can take security for AI into your own hands.
Building your own AI app? Here are 3 risks you need to know about—and how to mitigate them.
From training to annotation to fine-tuning and beyond, here’s how a firewall for AI can help you stay secure as you build your AI model.
5 things you need to know to build a firewall for AI
As organizations expand their use of AI apps, it's important to have a scalable data leak prevention (DLP) solution in place.
4 key takeaways from the 2024 Verizon Data Breach Investigations Report
What are the most common kinds of data breaches—and how can you protect your data against them?
Employee Spotlight: James Jaconetti, VP of Customer Success
Meet the newest addition to the Customer Success team at Nightfall AI.
Top 5 SaaS misconfigurations to avoid and why
It’s essential to be proactive about managing your security posture across SaaS apps like Google Drive and Microsoft OneDrive. Read on to learn why—and how—you can do just that.
Here’s what caused the Sisense data breach—and 5 tips for preventing it
Learn what you can do to stop data sprawl and prevent privilege escalation attacks.
Nightfall named a “Data Security Solution of the Year”
Nightfall has been named a “Data Security Solution of the Year” by the Data Breakthrough Awards.
Securing AI with Least Privilege
In the rapidly evolving AI landscape, the principle of least privilege is a crucial security and compliance consideration.
Firewalls for AI: The Essential Guide
As organizations increasingly build AI applications, firewalls for AI are an important component of modern data security strategies.
Nightfall Named A Leader in Data Loss Prevention (DLP) by G2
Nightfall leads the way in G2’s Spring ‘24 reports.
5 Expert Tips for Protecting Your Enterprise’s Sensitive Data
Join Nightfall’s investors for insights on how to defend enterprise data against new and evolving threats.
Nightfall was built on AI. Here’s how we’re advancing our mission to scale data protection in the enterprise.
As we continue to innovate, Nightfall's central mission is to empower enterprises big and small to navigate the digital world with confidence, while ensuring the security and privacy of their sensitive data.
Prevent security drift with Nightfall SaaS Security Posture Management (SSPM)
SaaS Security Posture Management, or SSPM, is a critical tool for governing data and managing risk within the enterprise.
Navigating Data Privacy for GenAI in Customer Support
As GenAI transforms customer support, data privacy remains paramount.
Nightfall AI releases GenAI-powered Sensitive Data Protection for the enterprise
From detection to remediation to education, Nightfall’s ultimate goal is to use GenAI to help security teams find peace of mind, knowing their company and customer data is secure across the cloud and beyond.
Nightfall AI launches data encryption and sensitive data protection for emails
In a world where data breaches are increasingly costly (and common), Nightfall has innovated a simpler and more streamlined solution to protecting sensitive data in emails and beyond.
Reduce insider risk with Nightfall Data Exfiltration Prevention
Insider risk is a challenging issue for the enterprise, and unfortunately, legacy DLP falls short. But with Nightfall’s advancements in GenAI, security teams can stop insider risks before they escalate.
Nightfall AI Transforms Enterprise DLP with AI-Native Platform
Nightfall's new enterprise capabilities expand cloud DLP use cases for AI-powered data security.
Nightfall expands its platform to meet modern enterprise DLP challenges
Legacy DLP never worked. Enter: Nightfall AI, the AI-native data leak prevention (DLP) platform.
New at Nightfall: February '24 Product Update
From platform enhancements to time-saving features, here’s how Nightfall improved the customer experience this month.
Done with traditional DLP? Here’s how generative AI can help.
Tired of being overwhelmed by alerts? Discover how generative AI can transform your DLP solution.
New at Nightfall: January '24 Product Updates
From platform enhancements to time-saving features, Nightfall has made several updates to simplify our customer experience.
4 Tips For Staying Ahead of Cybersecurity Threats in 2024
From prompt injection to to privilege escalation, these are the security threats you need to be prepared for in 2024.
Streamline your security workflows with these 3 shortcuts in Tines
Create your own custom cloud DLP workflows by integrating Nightfall with Tines.
The ultimate guide to security for AI
From regexes to transformer models, here’s how you can leverage AI and machine learning for better sensitive data detection.
Nightfall’s new GenAI detectors are revolutionizing the cloud DLP landscape. Here’s how.
Learn how Nightfall’s detection engine stacks up against AWS Comprehend, Google DLP, and Microsoft Purview.
Nightfall AI Launches Human Firewall Feature to Help SecOps Teams Tackle High-Volume Alerts with Velocity
What is a human firewall, and how can it help you strengthen your security posture?
Introducing Cloud DLP for Microsoft Teams
Learn how Nightfall ensures security and compliance for Microsoft Teams.
3 Things You Need to Know About the Okta Breach
The recent Okta breach serves as a crucial reminder to safeguard sensitive information like credentials and session tokens. Here's what you need to stay protected.
Introducing Nightfall for Notion
Nightfall for Notion stops sensitive data such as PHI, PII, secrets, and keys from leaking into Notion pages.
Nightfall AI and Snyk Partner to Offer Developers AI-Powered Secrets Scanning
Snyk will co-sell Nightfall's cloud Data Leak Prevention (DLP) platform to keep developers' secrets secure while they work in SaaS apps like GitHub, Slack, and Jira.
Nightfall Partnered with Snyk to Make Developers’ Lives Easier. Here’s How.
Developers, meet the secrets scanning dream team.
AI Development Tools that Security Teams Should Know About and How to Secure Them
AI development tools introduce a number of new security challenges. Here's how to stay secure.
Improve Your Alert Triage Process In Just 3 Steps
What exactly is alert triage, and how can you use it to strengthen your business against rising cyber threats?
More stories
.webp)
Nightfall’s data protection & classification platform enables SOC 2 compliance
Security teams that work in highly regulated industries or build solutions for consumers must adhere to compliance controls and regimes required for their business. One of the most important compliance requirements for many companies is the SOC 2 audit. The SOC 2 audit provides detailed information and quality assurance about essential security factors such as the confidentiality of data under your organization's stewardship, privacy controls, and many other standards.
ICYMI: 4 lessons for securing codebases from secrets exfiltration
Last month we hosted a webinar dedicated to discussing the issue of codebase security. As trends like secrets and credential exfiltration continue to be of concern within systems like GitHub, threats, such as cryptojacking and supply side attacks, have become more of a problem.
Prevent secrets, credentials, and PII leaking in application logs with the Nightfall Developer Platform
Infosec leaders have a lot of corners to cover in their cybersecurity strategy. When crafting the tactics and onboarding the platforms that will protect sensitive information, the checklist of requirements could be missing a very important vector for attack, compliance risk or data loss: application logs.
The NIST Cybersecurity Framework: Security Checklist And Best Practices
The National Institute of Standards and Technology (NIST) is part of the US Department of Commerce and was founded in 1901. NIST was originally established to help the U.S. industry become more competitive with economic rivals and peers, such as the UK and Germany. NIST prioritizes developing measurements, metrics, and standards for technology used in different industries.
Preventing data loss in data warehouses with the Nightfall Developer Platform
Data warehouses power your data analysis and business intelligence operations so you can level up your knowledge and progress toward bigger business goals. Like any key component of your tech stack, using data warehouses effectively also requires care and caution — especially when uploading and sharing sensitive information.
What can we learn from the top 100 data breaches of the past 15+ years?
The Nightfall blog is a knowledgebase for cybersecurity professionals with news and insights from the world of cloud security. Each week we’re publishing new content to help you stay up-to-date on cybersecurity topics and to prepare you for the issues and threats that occur every day on the job.
GLBA Compliance Checklist: Keeping Financial Data Safe And Secure
GLBA compliance isn’t something to take lightly. These measures are strictly enforced by the Federal Trade Commission (FTC). In 2018, for instance, Venmo and its parent company PayPal reached a settlement after complaints about the company’s handling of privacy disclosures.
The Basics of PCI Compliance: Merchant Levels and Requirements
PCI compliance isn’t just good for customers; it’s also good for business. Merchants that fall short of PCI compliance standards not only put their customer data at risk but also may face hefty fines. The PCI Compliance Guide reports that fines and penalties can range from $5,000 to $100,000 per month for the merchant.
Is Dropbox HIPAA Compliant?
Dropbox is known for being a convenient file sharing and storage tool. For over a decade, Dropbox has allowed teams to collaborate cross- functionally by providing a single source of truth. With files being managed and synced to a central location, teams can work together without issues of version control. Even in a post- Google Drive and OneDrive era, Dropbox remains important, as not everyone uses the same productivity suites.
PHI Compliance: What It Is and How To Achieve It
For organizations that work in or partner with the healthcare industry, HIPAA compliance is of paramount importance. Keeping a patient’s medical records and personal information safe isn’t just a matter of avoiding penalties. It’s also key to building trust with patients and, ultimately, providing great patient care.
Schedule a live demo
