TEL AVIV, Israel, Nov. 29, 2023 (GLOBE NEWSWIRE) — Piiano, the main information safety firm, at the moment introduced Piiano Flows, the trade’s first privacy-centric static code analyzer. The corporate will provide free scans till the top of 2023.
Excessive-profile information leaks, together with Duolingo’s PII leak in late August, underscore the essential significance of information safety for companies on a world scale. Flows robotically and constantly analyzes supply code all through growth processes and tracks when, the place and the way delicate information are getting used and saved. This permits safety groups to shift information safety left with a extra proactive method. Piiano’s software finds potential information leaks inside supply code and ensures that delicate data, equivalent to Personally Identifiable Info (PII), credentials and monetary data, are protected earlier than defective code reaches manufacturing.
“Safety leaders need to focus extra on information safety throughout growth, however don’t have the correct instruments to take action at scale and see what’s occurring with information of their code. Knowledge vulnerabilities are even more durable to seek out after defective code reaches manufacturing, which is why our software nips the issue on the supply,” says Gil Dabah, co-founder and CEO of Piiano.
Picture exhibits delicate information statistics gathered by analyzing a code repository.
Builders are anticipated to work at a speedy tempo and underneath quite a lot of stress. Compounded by an absence of safety experience and orientation, they’re inclined to creating errors by little fault of their very own that may expose information on the code degree–equivalent to forgetting to take away debugging logs or inadvertently exposing delicate information by public or third-party APIs.
Based on Justinian Fortenberry, CISO at Etsy and a board advisor to Piiano, “Piiano Flows is a really highly effective and easy resolution that, for the primary time, permits enterprises to save lots of time figuring out potential information leaks throughout and after the applying growth course of.”
Dabah likens Flows to a “SAST-type software for proactive DPSM.” The corporate’s proprietary NLP ML mannequin and taint evaluation algorithms – a extra correct method than extra generally used Massive Language Fashions (LLMs) – maps and highlights any code that touches delicate information, together with incoming, outgoing and saved information, to assist discover information privateness and safety points and blind spots that may occur in runtime.
Flows, out there without cost, is designed for fast and straightforward use with an intuitive interface for safety groups. To eradicate third-party danger, it solely requires entry to code itself with out ever accessing manufacturing environments or manufacturing information shops containing delicate buyer information.
Piiano gives a knowledge safety platform for app-sec and engineering groups to safe delicate buyer information and guarantee their privateness – even within the occasion of a breach. Enterprises can scan their supply code to seek out information leaks and related information publicity points and remediate them by securing the delicate information by utilizing its information safety APIs. With Piiano’s constructing blocks, engineers and safety leaders can save important time, effort and assets whereas reaching true safety with out slowing down.