Skip to main content
NEW: RSAC 2026 NHI Field Report. How Non-Human Identity became cybersecurity's central axis
Back to Blog
Tag

AWS

4 posts
How to Rotate sk_live_, vercel_token, sk-proj Exposed in .env
Apr 27, 2025

How to Rotate sk_live_, vercel_token, sk-proj Exposed in .env

We found live API keys in 0.45% of public Vercel deployments. AWS credentials, Stripe secrets, GitHub tokens. Here is what exposes them (NEXT_PUBLIC_ misuse is only one), how attackers chain a single key into full cloud compromise, and what to change in your setup this week.

Ben Kim
Ben Kim
Founder & CEO
Hidden Dangers: Why Detecting Secrets in S3 Buckets is Critical
Apr 14, 2025

Hidden Dangers: Why Detecting Secrets in S3 Buckets is Critical

Hidden Dangers: Why Detecting Secrets in S3 Buckets is Critical

Ben Kim
Ben Kim
Founder & CEO
Stop the Sprawl: Introducing Cremit’s AWS S3 Non-Human Identity Detection
Feb 25, 2025

Stop the Sprawl: Introducing Cremit’s AWS S3 Non-Human Identity Detection

Stop the Sprawl: Introducing Cremit’s AWS S3 Non-Human Identity Detection

Ben Kim
Ben Kim
Founder & CEO
Cremit Joins AWS SaaS Spotlight Program
Nov 6, 2024

Cremit Joins AWS SaaS Spotlight Program

Cremit Joins AWS SaaS Spotlight Program

Ben Kim
Ben Kim
Founder & CEO