Blog

AI | Security

Why AI Agent Identity Requires Runtime Enforcement, Not Another IdP

AI agents don’t behave like traditional identities. Learn why runtime enforcement, workload identity, and ephemeral access matter more than static directories and OAuth scopes.

Security

Six Months, Three GovCloud Accounts, Zero Excuses: Lessons from the CISA GitHub Leak

A public GitHub repo named “Private-CISA” sat unmonitored from November 2025 to May 2026, exposing AWS GovCloud admin keys and plaintext credentials for the agency’s DevSecOps environment. The real story isn’t the contractor. It’s the architecture that let static secrets exist in the first place. On May 18, 2026, Brian Krebs reported that a contractor […]

InfoSec | Security

The Edge of Exposure: Why Your Browser Passwords Aren’t Safe

Microsoft Edge’s plaintext RAM disclosure exposed a deeper flaw in browser password managers. Learn why security teams are rethinking credential storage and how Akeyless Password Manager 2.0 minimizes exposure with Zero-Knowledge architecture and Just-In-Time access.

DevOps

Using External Secrets Operator (ESO) with Akeyless

Learn about the External Secrets Operator for Kubernetes open source project, and how you can use it with Akeyless secrets.

DevOps | InfoSec

The Hidden Risks of Secrets Mismanagement in CI/CD Pipelines

This blog uncovers the hidden risks of poorly managed secrets in CI/CD pipelines, from hardcoded credentials to excessive permissions, and provides actionable strategies to secure your workflows, protect sensitive data, and streamline deployments.

InfoSec

The Billion-Dollar Question: Are Financial Institutions Safe from Their Own Secrets?

Are banks safe from their own secrets? Leaked credentials can cost millions. Learn why financial institutions must adopt secrets management to prevent fraud, ensure compliance, and secure multi-cloud environments.

AI | Security

How We Turned AI Agents Into Security Researchers at Akeyless

See how Akeyless trains AI agents to review code, test pull requests, and turn every security finding into lasting institutional knowledge.

AI | InfoSec | Machine IAM

Every Hardcoded API Key in Your AI Stack Is, According to Gartner, a Failure of Your IAM Program

That title is not a paraphrase. That is a near-direct quote from Gartner’s April 2026 Reference Architecture Brief on IAM for AI Agents and Other Workloads: Gartner“Every new static symmetric string, such as an API key, represents a failure of the IAM program and tooling.” Gartner®, Reference Architecture Brief: IAM for AI Agents and Other […]

Product Updates

Introducing Akeyless Password Manager 2.0: Workforce Passwords, Engineered for the Enterprise

Today we’re announcing the general availability of Akeyless Password Manager 2.0, a workforce password manager built on the security architecture that enterprises already trust for their most sensitive secrets, keys, and machine identities. Most password managers were designed for consumers and retrofitted for enterprises. The result is a familiar pattern: a beautiful browser extension on […]

AI | Machine IAM

Zero Standing Privileges (ZSP) and Just-in-Time (JIT) Access: The New Security Standard for the AI Era

Zero Standing Privileges (ZSP) and Just-in-Time (JIT) access eliminate persistent credentials by granting access only when needed, for a specific task, and for a limited time.

DevOps | Platform Engineering

HashiCorp Vault Enterprise: A Cost Reality Check

HashiCorp Vault is the default choice for secrets management for good reason. It’s powerful, flexible, and battle-tested. But when teams sit down to evaluate cost, they almost always make the same mistake: they look at the license and stop there. The license is the easy part. What’s harder to quantify, and far more significant over […]

AI | InfoSec | Security

The Post-Vercel Secrets Checklist: A 30-Minute Audit for Your Stack

Last week, we walked through the Vercel incident and explained why ephemeral secrets change the blast radius of this class of breach. This post is the practical next step: a 30-minute audit any platform or security team can run this week. Nothing in it is specific to Akeyless. If you come out the other side […]