AI security governance at scale: New features from Nudge Security

New AI governance features deliver deeper visibility, stronger policy enforcement, and built-in enablement tools to manage workforce AI securely at scale.

The AI adoption curve and what it means for your business

What does the rapid pace of AI adoption mean for cybersecurity leaders as they grapple with AI security and governance?

Suspected compromise of Gainsight-connected Salesforce instances via OAuth tokens

On November 19, 2025, Salesforce issued a Security Advisory describing “unusual activity” involving Gainsight-published applications connected to Salesforce.

What is AI data security? Frameworks and tactics explained

Understand AI data security, its risks, and actionable frameworks and tactics to safeguard sensitive data in AI-powered environments.

Our Series A: Why we're betting on the workforce as security's greatest asset

Nudge Security’s Series A accelerates its mission to provide visibility, automation, and workforce engagement across SaaS and AI security.

The ultimate guide to SaaS security tools: Top vendors, solutions, and how to choose

Explore the top SaaS security tools and vendors of 2025. Learn how modern platforms discover, monitor, and secure SaaS and AI apps—plus how Nudge Security unifies SaaS visibility and governance in one solution.

How SaaS discovery is useful in a merger or acquisition

Five ways Nudge Security helps you gain the visibility you need, secure your newly expanded SaaS estate, and plan for the future.

Eliminate wasted SaaS spend to help fund your 2026 priorities

Nudge Security is the only SaaS management platform that discovers up to two years of historical SaaS spend within minutes of starting a free trial.

CamoLeak prompt injection in GitHub Copilot Chat enables private code & secret exfiltration

A critical vulnerability in GitHub Copilot Chat (”CamoLeak”) allowed attackers to silently exfiltrate private repository content and secrets.

OpenAI AgentKit and Agent Builder: Building secure AI agents

Learn how OpenAI’s AgentKit and Agent Builder work—and what security teams need to know to build safe, governed AI agents that protect enterprise data.

Shadow AI: The emerging security threat in IBM's 2025 Cost of a Data Breach Report

IBM's annual report reveals that while global breach costs have declined for the first time in five years, a new threat has emerged: shadow AI.

Shadow AI is just the new shadow IT—here’s why a SaaS-first approach wins

Shadow AI is just the latest form of shadow IT. Learn why a SaaS-first security approach gives you the visibility and control to manage AI risks at scale.

Is it safe to connect ChatGPT to Google Drive & Microsoft OneDrive?

While the convenience of integration can boost productivity, the hidden dangers and cybersecurity risks can be significant.

How to discover and secure AI adoption with Nudge Security

Learn how our AI dashboard and dedicated playbooks help you to visualize and manage AI adoption at scale across your organization.

ForcedLeak indirect prompt injection in Salesforce Agentforce enables CRM data exfiltration

Noma Labs disclosed a critical vulnerability chain in Salesforce Agentforce that allowed adversaries to exfiltrate sensitive CRM data.

AI discovery methods compared: A 2025 guide to finding and managing shadow AI

With AI making it’s way into virtually every SaaS application, AI discovery extends far beyond chat prompts and purpose-built AI tools.

The Salesloft Drift breach is bigger than Salesforce: What it says about SaaS security

The Salesforce breach exposed serious SaaS supply chain risks. Learn how OAuth integrations create blind spots and what to do about them.

Breach of Salesloft Drift OAuth tokens leads to Salesforce data theft

Attackers stole OAuth tokens from the Salesloft Drift app to bypass MFA and exfiltrate Salesforce data from hundreds of organizations.

DOM-based extension clickjacking vulnerabilities in popular password managers

Marek Tóth presented at DEF CON 33 a new attack technique called DOM-based Extension Clickjacking that impacts popular browser-based password manager extensions.

The end of the AI honeymoon: SaaS data risks in the MCP era

AI is no longer limited to prompts and file uploads. With MCP and embedded AI in SaaS apps, corporate data exposure is accelerating. Learn what this means for security and governance.

The rise of agentic AI: How autonomous AI changes security & governance

Discover how agentic AI is reshaping enterprise security and governance. Learn the risks, workforce impacts, and steps to stay ahead.

It’s time to move beyond the CASB

As the nature of work evolves, avoid falling victim to the sunk cost fallacy of CASB.

Campaign targets crypto users with malicious Firefox extensions

Security researchers at Koi Security have uncovered a large-scale, multi-faceted cybercrime campaign dubbed GreedyBear.

5 ways customers use security nudges to drive action—and results

From cutting SaaS costs to managing AI use, discover how Nudge Security customers use nudges to improve security outcomes and change workforce behavior.

Critical vulnerability identified in Base44 Vibe Coding platform allowing unauthorized access to private applications

A critical vulnerability was discovered in the Base44 vibe coding platform, recently acquired by Wix.