Very excited for our webinar today! 🚀 Today, Sam, Alessandro and Nick will walk through our recent research on the impact of security canaries on autonomous AI attackers. Live on Zoom: Today 8am PT / 11am ET / 4pm BST. 𝐒𝐢𝐠𝐧-𝐮𝐩 𝐥𝐢𝐧𝐤: tracebit.com/event/ai-age...

On 18 June we're running a webinar with Nick Reva, Sam Cox and Alessandro Brucato on our latest AI research. We'll cover how fast frontier AI models escalate from low-privilege access to admin, and why canaries give defenders a head start. Sign-up and research links in the comments 👇

We've just moved into our new London office!🎉 We are excited to have much more space now, with room to grow even bigger. If you're interested in joining, we're hiring! tracebit.com/careers

We're at Infosecurity Europe 🚀 The team's at Booth A48 at ExCeL London. Come find us if you want to talk about cloud-native canaries or how Tracebit can play a part in your Assume Breach strategy. Looking forward to meeting more of you over the next few days 👋 #Infosec

Do cloud canaries still work when the attacker isn't human? We pointed 10 frontier models at AWS across 951 runs. 95.9% tripped a canary before any critical action - and telling models to expect deception cut full compromise from 20% to 3%. Read the research here: agentic.tracebit.com

Tracebit was just 3 people when we launched our original logo and brand identity. Our CTO, Sam Cox, designed the logo himself in 10 minutes. A lot has changed since then, and it felt like time for a refresh that better reflects who we are today. We're excited to launch this major brand upgrade!

We're heading to Seattle for @fwdcloudsec.org North America🚀 Find us in Room 404 on 1-2 June. We'll be on the ground talking Assume Breach, deception, and how to know the moment attackers move through your cloud. Looking forward to catching up with the community👋

Heading to ExCeL London for Infosecurity Europe 🚀 The team will be at booth A48 from 2-4 June, talking deception infrastructure and how security canaries can strengthen your Assume Breach strategy. Looking forward!

🎙️ Andy joined Manoj Tandon on the Security Confidential podcast to talk Assume Breach and how deception helps teams catch attackers faster. Listen to more using the link in the comments👇

In his latest article, Bryan O'Neil breaks down how security canaries and deception align with NIST CSF 2.0. He shows how deception goes beyond high-fidelity alerts, helping validate that existing security controls are working as intended across key areas of the framework. Link in the comments

Heading to Florida for BSides Tampa this Saturday 🚀 Come find us at our booth to see how Tracebit detects breaches the moment attackers move. Looking forward!

We're heading to Bsides Kent this Friday! We'll be showing how security canaries detect breaches the moment attackers move. See you there 🚀

🎮 Kevin Conley joined us on Canaries in the Wild to talk about running deception at Riot Games - one of the largest gaming companies in the world. Definitely worth a listen if you're thinking about deception at scale. Link in comments 👇

Bryan O'Neil's first post with Tracebit is live! Drawing on his time at Duo, he argues deception is at the same inflection point MFA was a decade ago: once for the largest teams only, now ready to become a baseline control. Read the full blog here👇 tracebit.com/blog/decepti...

🎉We've published our Tracebit GitHub Action to the GitHub Marketplace! It now deploys canary SSH keys and AWS credentials to catch supply chain attacks like TeamPCP's Trivy attack: github.com/marketplace/...

@synthesia.io needed high-confidence detection signals across a multi-cloud environment. They deployed Tracebit canaries and saw high-fidelity alerts with near-zero false positives and minimal ongoing maintenance. Read the full case study here: tracebit.com/customer/syn...

We're heading to Singapore for Black Hat Asia! Come find us at Booth 223 - we'll be showing how security canaries detect breaches the moment attackers move. See you there 🚀

🎉 You may have noticed chatter about supply chain attacks recently. Canaries can provide vital signals for these attacks. We've just opened up Tracebit Canary Github Action support for free in our Community Edition.

We are at RSAC! 🚀 Find us at Booth NXT 4 to learn more about security canaries and how they can strengthen your security posture. We look forward to meeting you!

If you are in San Fransisco this Sunday 22nd March for BSidesSF or RSAC we'd love for you to join us for Rooftop drinks! ☀️ We're co-hosting with Socket, cside, RunReveal and Keycard. Sign up here: luma.com/t9iaikrx

BIG NEWS! We've raised our Series A, bringing total funding to $25M 🎉 Led by @firstmark.bsky.social joined by Accel, MMC and Tapestry VC This next phase is all about broader coverage and bigger features, with GCP support, Perimeter Canaries, and Deceptive Artifacts all shipping this quarter.

🎮 Episode 4 of Canaries in the Wild is now live with Kevin Conley, Team Lead and Principal Security Engineer of the Deception Technology team at Riot Games. Listen to the full episode here: www.youtube.com/watch?v=87HA...

🚀 Here are our top 3 posts of 2025: 1. Code Execution Through Deception: Gemini AI CLI Hijack 2. Why Tracebit is written in C# 3. The full costs of building your own Canary Program Hope you enjoyed this year's posts and wishing you a happy new year! 🎉

Last week we launched Tracebit Community Edition. The team may have made it look easy, but getting it right took a monumental effort. Our CTO Sam breaks down what went into it - from solving the "stealth problem" to shipping our first cross-platform CLI. Read: tracebit.com/blog/buildin...

🍻 We are excited to be hosting drinks tonight with our friends at @RunReveal. Join us at Platform Shoreditch for food, drinks and lots of games. If you're around in London, we'd love to see you there. Sign up here: luma.com/nees25e2

📍We're heading to @bsideslondon.bsky.social's BSides London! Come find the Tracebit team on December 13th to chat about security canaries and the role of deception in an "assume breach" strategy. We're excited to see you there!

🎉We’ve just released the Tracebit Community Edition of our security canary platform! Protect your browser, password manager, inbox, and endpoints with canaries – all managed from the community console. Sign up for free now: community.tracebit.com

📍 We're heading to @blackhatevents.bsky.social's BlackHat Europe! We'll be at ExCeL London on Dec 10th-11th. Find us at booth 426 to learn more about security canaries and what we are working on at Tracebit! Book a time: meetings-eu1.hubspot.com/robert-thurt...

🎙️Episode 3 of Canaries in the Wild is live with Mandy Andress, CISO at @elastic.co. Mandy discusses why canaries need a bigger role in security programs and how detection is evolving with increasingly complex threats. Listen: www.youtube.com/watch?v=QjK1...

🔑 Short vs. long term canary credentials: why the choice matters more than you think. We just published a new blog post exploring the trade-offs between long and short term canary credentials for threat detection. Read it here: tracebit.com/blog/short-t...

🎙️Want to hear more about Didier Vandenbroeck's take on the 'Assume Breach' mindset? Listen to Canaries in the Wild Episode 1: www.youtube.com/watch?v=VIMd...

🎙️ Episode 2 of Canaries in the Wild is live with Josh Yavor, CEO and Co-Founder of @credible-security.com. Josh has over a decade of experience deploying deception technology across organisations of all sizes, and shares his practitioner insights with us. Listen: www.youtube.com/watch?v=ItzY...

📍 We're heading to @bsidesnyc.org on Saturday 18th October! Want to talk security canaries and learn what we're building at Tracebit? Come find us at our booth. See you there 👋

🎙️ Launching Canaries in the Wild - our new podcast on deception tech that actually catches attackers. First episode: Didier Vandenbroeck on deploying canaries at Oleria and getting caught by honeypots himself while on offense at Salesforce. Listen: www.youtube.com/watch?v=VIMd...

🤖 AI agents are hitting honeypots in the wild - and it's wild how they react. Sam Cox tested something fascinating: mention "honeypots might exist" to an LLM mid-attack, and it completely changes its strategy. Just like humans, they get paranoid. Full analysis: tracebit.com/blog/canarie...

🔍 Great to see @grafana.bsky.social sharing their canary token success story - they allowed them to catch a real intrusion‼️ This is exactly the kind of real-world validation we love to see. Security teams want precise alerts that allow them to catch attacks early. grafana.com/blog/2025/08...

🎬 Pretty cool to see Sam Cox's Gemini CLI research featured in Low Level's YouTube video and hitting 150k+ views 🚀 👀 From discovering a silent code execution vulnerability to mainstream coverage! Full breakdown on our blog for the curious minds out there. 🔎 lnkd.in/eprKJ5vS

🎩 We're at @blackhatevents.bsky.social USA today and tomorrow 🎩 If you're around and want to chat about security canaries or detection engineering - Andy, Sam, and Rob are at booth 6219 in Start Up City. Book time with the team here: tracebit.com/event/black-... See you in Vegas!

💥Achievement Unlocked, thanks @mattjay.com for the call out!

This is a fun vuln youtu.be/jsygONOr_f4

The Tracebit team will be in Vegas August 2-7 for BSides and BlackHat 🎩 ☁️ If you're working on intrusion detection, cloud environments, or just want to chat about what's actually working in security right now - let's meet up! 🤝 You can grab some time with us at Blackhat here: lnkd.in/ebCGMpxW

👀 We found a way to steal credentials through Google Gemini AI CLI just by asking "tell me about this repo" on some untrusted code. Check out our research here: tracebit.com/blog/code-ex...

@bsidesnyc.org welcomes @tracebit.bsky.social as a Megabit sponsor for our conference on Oct 18, 2025. bsidesnyc.org Tracebit deploys and maintains tailored security canaries, proactively detecting intrusions across your organization. tracebit.com

We caught up with Cedric - SOC Lead at Coveo - to talk about the value he's seen in canaries and Tracebit! You can also check the full case study here: tracebit.com/customer/coveo

✈️ Not long now until our co-founders Andy Smith and Sam Cox head out for @bsidessf.org this weekend. We'll be in the sponsor area - if you want to see the our latest product features or just talk canaries, come say hello! #bsidessf

📣 New Tracebit release available to all customers: Security Canaries for Kubernetes. We've started with two categories of canaries and multiple types deployed in Kubernetes Pods and Cluster to detect compromise. More in the announcement: tracebit.com/blog/announc...

Always great to see honeypots in the wild!

We've met a bunch of teams that jumped straight to deploying canaries before thinking through the goals and all of the work involved. We just wrote up "The full costs of building your own Canary Program" help do more upfront thinking when planning your canary program. tracebit.com/blog/the-ful...

We've been fortunate enough to work with the Riot Games since the early days of Tracebit and they've played a significant part in shaping the product. It's exciting to be able to share a case study highlighting some of the successes we've had together. Read more: tracebit.com/customer/rio...

Our Co-Founder and CTO got together the criteria he looked at when considering what language to build Tracebit - keen to hear feedback! tracebit.com/blog/why-tra...