New independent research: Most enterprises aren’t fully ready to secure autonomous AI agents →

TRY AEMBIT
TALK TO AN ENGINEER
Blog
Blog
Blog
X

Blog

Author: Dan Kaplan

Businessperson interacting with CRM data.

When Salesforce Becomes a De Facto Credential Repository: Lessons from the Drift OAuth Breach

This malicious campaign demonstrates how long-lived token theft can become the first step in a much broader breach.
Dan Kaplan
Aug 2025
|
3 min read
Dynamic Authorization vs. Static Secrets

Dynamic Authorization vs. Static Secrets: Rethinking Cloud Access Controls

Learn why static secrets fail in modern environments and how to implement dynamic authorization.
Dan Kaplan
Aug 2025
|
6 min read
Vault with a warning sign superimposed.

Vault Fault: Secrets Managers and the Limits of Centralized Trust

Recent flaws in Conjur and Vault highlight the risks of concentrating trust in a single repository – and why workload IAM may offer a more resilient path forward.
Dan Kaplan
Aug 2025
|
3 min read
A person vibe codes

When Identifiers Aren’t Identities: Security Lessons from the Base44 AI Vibe Coding Flaw

The vulnerability shows how modern application development is accelerating without bringing access controls along for the ride.
Dan Kaplan
Aug 2025
|
3 min read
biometric scanner

Workload IAM vs. API Security

You can monitor traffic all day, but if you don’t control what’s allowed to send it, you’re already behind.
Dan Kaplan
Jul 2025
|
5 min read
Inside Snowflake's NHI Security Playbook.

The Story Behind Snowflake’s Push to Rein in Non-Human Identities

After locking down workforce identity, Snowflake’s security team took on the harder problem – controlling non-human access at scale without slowing teams down.
Dan Kaplan
Jul 2025
|
4 min read
AI and human face eye to eye.

The Emerging Identity Imperatives of Agentic AI

AI agents are changing how identity and access work but most teams are unprepared.
Dan Kaplan
Jun 2025
|
4 min read
Secretless Access for GitHub Actions and Workflows

Secretless Access for GitHub Actions and Workflows

Protect GitHub Actions environment variables with secretless authentication. Avoid static secrets and secure your CI/CD pipelines the modern way.
Dan Kaplan
Jun 2025
|
6 min read
Engineers observing incident on monitor

5 Common Ways Non-Human Identities Are Exploited – and How to Secure Them

Discover the emerging class of attacks involving software workloads and AI agents.
Dan Kaplan
Jun 2025
|
4 min read
Dev, DevOps, Security Cooperation

How to Unite Developers, DevOps, and Security Without Slowing Down

Builders and protectors don’t have to clash – they just need a common path.
Dan Kaplan
May 2025
|
5 min read
Load More