The security team said yes: How a $300B investment firm deployed Claude agents across the enterprise →

TRY AEMBIT
TALK TO AN ENGINEER
Blog

Tag: APIs

Connect custom AI agents with Slack

How to Connect Custom AI Agents with Slack

Whether you want simple fire-and-forget alerts or full two-way control, here’s how to securely wire your AI agent into Slack
Aembit Engineering
May 2026
|
11 min read
I spent one day building AI agents. Here's what actually happened.

I Spent One Day Building AI Agents. Here’s What Actually Happened

Victor Ronin builds AI agents in a day using CrewAI and a local LLM, sharing what worked, what broke and why agents still need humans.
Victor Ronin
May 2026
|
11 min read
Workload IAM vs. API Security

Workload IAM vs. API Security

Two layers protect cloud-native apps: Workload IAM secures machine identity and API security inspects request traffic. Most teams need both.
Dan Kaplan
Apr 2026
|
5 min read
Dark horizontal diagram showing a “Delete Resource” action enabled by a redacted access token, leading to a production database dissolving and a “resource permanently deleted” warning.

How a Long-Lived API Credential Let an AI Agent Delete Production Data

An agent behaved like a true insider threat. Unmanaged API keys made those mistakes devastatingly consequential. Both can be true at the same time.
Dan Kaplan
Apr 2026
|
4 min read
How to Build an MCP Server — and What to Do Before You Ship It

How To Create an MCP Server To Connect Your App With LLMs

You can stand up an MCP server in minutes, but controlling how it authenticates and what it can access is where the real work begins.
Aembit Engineering
Apr 2026
|
8 min read
API Keys v OAuth

API Keys vs OAuth: Which API Authentication Method Is More Secure?

API keys offer simplicity, but OAuth provides superior security through automatic expiration and granular scopes.
Dan Kaplan
Jan 2026
|
6 min read
MCP vs Traditional API Security

MCP vs. Traditional API Security: Key Differences

Securing MCP requires a fundamentally different approach than traditional API security.
Apurva Davé
Dec 2025
|
6 min read
Picture of physical keys personifying resource jacking API keys

How I Used Free Tools to Resource Jack API Keys

Hackers don’t need elite skills to steal your cloud resources – just free tools, public code, and a little patience.
Ashur Kanoon
Jan 2025
|
4 min read
Image of lock on top of computer hardware

BeyondTrust Breach Exposes API Key Abuse Risks

When a single API key compromise spiraled into a broader attack, it exposed how overlooked non-human identities can become gateways for escalating threats.
Dan Kaplan
Jan 2025
|
3 min read
Aembit-Auth0 NHI Integration

How the Auth0 and Aembit Integration Boosts Non-Human Access Security

The collaboration automates workload-to-workload access, simplifying security for API connections and reducing the risks associated with credential management.
Apurva Davé
Oct 2024
|
3 min read
Load More