Naresh LamGade

RSA 2026, here we come!

Google API keys didn't use to be considered "secret," so they're all over the web-- but now they are an open door to Gemini 🫠 Quick rundown video of Truffle Security's really nifty research, almost 3,000 websites exposed.. including Google themselves😅 🔗 youtu.be/XNMHUifKce8

@ByteByNg I’m sorry to hear that. That’s definitely not the experience we aim to deliver. I’d genuinely like to understand what didn’t meet your expectations. Could you share a bit more detail, or feel free to DM me so we can look into it properly?

@nlamgade I purchased this one but it waste of money

We used @vigileai to identify an exposed employee developer account leaking sensitive data. Reported responsibly. Issue resolved. $2,500 bounty earned. Most breaches start with exposed credentials. Monitor yours before someone else does. Try @vigileai #dataleak

Can AI beat challenges modeled after actual prevented breaches found in the wild? They did - 9 out of 10 times - and usually for less than a dollar. The new economics of cyber offensive AI are hard to ignore.

The amount of crap I get for putting out a hobby project for free is quite something. People treat this like a multi-million dollar business. Security researchers demanding a bounty. Heck, I can barely buy a Mac Mini from the Sponsors. It's supposed to inspire people. And I'm glad it does. And yes, most non-techies should not install this. It's not finished, I know about the sharp edges. Heck, it's not even 3 months old. And despite rumors otherwise, I sometimes sleep.

@1Umairshaikh Check it out vigile.ai

What are you building on weekends? Share links 🚀

@heyblake vigile.ai

Drop your project URL Let’s drive some traffic

VigileAI gives instant visibility into breached employees before it’s too late. Try it today!

GPT-5.2 Codex is now available in Cursor! We believe it's the frontier model for long-running tasks.

@vigileai helps you to detect employee data breaches before they happen! Try it now at vigile.ai Early access is live. Would appreciate feedback! :) #vigileai #cybersecurity #darkweb #dataleakmonitoring

The hardest part of building a security company isn't the technology. It's earning trust in an industry where everyone has been burned by vendor promises. You don't sell security products. You sell the belief that this time will be different.

What's one piece of security advice you followed early in your career that you now completely disagree with?

𝗪𝗵𝗲𝗿𝗲 𝗡𝗲𝗽𝗮𝗹’𝘀 𝗳𝗲𝗺𝗮𝗹𝗲 𝗰𝘆𝗯𝗲𝗿 𝘁𝗮𝗹𝗲𝗻𝘁𝘀 𝗽𝗿𝗼𝘃𝗲 𝘁𝗵𝗲𝗶𝗿 𝘀𝗸𝗶𝗹𝗹𝘀 𝗹𝗶𝘃𝗲. Bugv invites skilled women to join the Live Hacking Event as active participants. Apply: buff.ly/vPqerhO Deadline: 48 hr #WomenInCyberNepal #LiveHackingNepal

We’re super excited to host our 2nd Live Hacking Event in Kathmandu this January. Live hacking events bring clarity. You see what works, what fails, and what actually matters in security. Proud to support security that is measurable, transparent, and outcome-driven.

Last week, a security researcher using our previous model found and disclosed a vulnerability in React that could lead to source code exposure. I believe these models will be a net win for cybersecurity, but we are in the 'real impact phase' as they improve.

Most organizations believe they are secure. In reality, many are not. See what attackers see before they do: vigile.ai/check-my-expos… #VigileAI #CheckMyExposure #CyberSecurity #RiskManagement #ThreatIntelligence #DataProtection

A critical vulnerability in React Server Components (CVE-2025-55182) affects React 19 and frameworks, including Next.js (CVE-2025-66478). All users should upgrade to the latest patched version in their release line. nextjs.org/cve-2025-66478

Honoring the people and partnerships that make progress possible. Warm Thanksgiving wishes from us.🍁🤎 🍂 🎃 #VigileAI #thanksgiving #Cybersecurity