SACR Report: How Agentic Identity Access Platforms Are Re-architecting IAM in 2026 →
TRY AEMBIT
TALK TO AN ENGINEER
Blog
Blog
Blog
X

Blog

Tag: Workload Identity

Secrets figuratively spilling out of LexisNexis.

How a Single Overprivileged Service Turned the LexisNexis Breach Into a Keys-to-the-Kingdom Moment

Details shared by the attacker suggest the intrusion expanded beyond the initial application through permissions that allowed access to dozens of internal credentials.
Dan Kaplan
Mar 2026
|
3 min read
Humans versus AI identity: Why AI agents are breaking identity

Human vs. AI Identity: Why AI Agents Are Breaking Identity

Traditional IAM was built for predictable workloads. Learn why AI agents demand a new approach to identity, access control, and credential management.
Dan Kaplan
Mar 2026
|
4 min read
MCP Servers being used in corporate SOC.

MCP Servers and the Return of the Service Account Problem

As agents scale and operate continuously, MCP servers are becoming long-lived access intermediaries, concentrating privilege in ways security teams have already struggled to contain.
Dan Kaplan
Mar 2026
|
3 min read
SSOvFI

SSO vs. Federated Identity Management: A Guide

Single sign-on (SSO) simplifies access for human users across an organization’s approved applications. Federated identity (FI) management connects users across organizational boundaries.
Ashur Kanoon
Jan 2026
|
5 min read
Service Accounts

What Are Service Accounts and Why Are They a Security Risk?

Service accounts are indispensable, but their security weaknesses make them the most attractive target in enterprise environments.
Ashur Kanoon
Jan 2026
|
6 min read
Catching Rogue Workloads and AI Agents

Anomaly Detection for Non-Human Identities: Catching Rogue Workloads and AI Agents

Traditional security models fail to detect compromised service accounts and non-deterministic AI agents, requiring a shift to layered, identity-aware behavioral monitoring.
Dan Kaplan
Jan 2026
|
8 min read
Aembit engineer Sebastian working on computers while looking at camera.

When the Vendor Becomes the Customer: Building Internal Tools on an Agentic IAM Platform

A project to improve test visibility meant using Aembit the same way customers do, in a real deployment environment where software runs unattended and requires trusted access to external services.
Dan Kaplan
Jan 2026
|
4 min read
Zero Trust 2026

Identity Over Network: Why 2026 Zero Trust Is About Who/What, Not Where

True zero trust requires verified identity at every request and eliminating static credentials entirely.
Dan Kaplan
Dec 2025
|
5 min read
Jenkins logo.

Aembit Adds Jenkins CI/CD Support

This update gives every Jenkins job a real identity and automated short-lived access so teams can retire static secrets without changing how their pipelines run.
Ashur Kanoon
Dec 2025
|
4 min read
A blurred software error message on a computer screen showing an exception response with a visible token value.

CrewAI GitHub Token Exposure Highlights the Growing Risk of Static Credentials in AI Systems

The exposure demonstrates how ordinary errors can reveal internal credentials and how stronger limits on scope and lifespan can contain the impact.
Dan Kaplan
Nov 2025
|
3 min read
Load More