Cremit | Stop the Sprawl: Introducing Cremit’s AWS S3 Non-Human Identity Detection

Announcement

Felipe Araujo

April 1, 2025

4-minute read

We are thrilled to announce a powerful expansion of Cremit’s security capabilities: the introduction of AWS S3 Non-Human Identity (NHI) Detection. This significant enhancement strengthens our platform’s core ability to detect secrets and supports security teams in effectively managing and preventing the uncontrolled spread of NHIs in cloud environments.

The Challenge: NHIs Sprawling in AWS S3

AWS S3 is a cornerstone of cloud storage, widely used by organizations for data hosting, backups, and operational support. However, the convenience of automation and scalability within S3 leads to a proliferation of non-human identities such as machine roles, automated services, API keys, and serverless functions that access and manage data autonomously.

This abundance can rapidly lead to unmanaged sprawl, significantly increasing risk exposure. Each unmanaged or forgotten NHI represents a potential point of vulnerability, risking data leaks, unauthorized access, and compliance breaches.

Why AWS S3 NHI Detection Is Critical

Non-human identities are often overlooked in traditional security practices, yet they are everywhere in AWS S3 environments: automated scripts, third-party services, CI/CD pipelines, and internal tools all rely on them. Without proper oversight, these identities can accumulate and become difficult to track, increasing the risk of accidental exposures or unauthorized access. Cremit’s detection capability helps surface these hidden identities and provides context around how they’re being used.

Screenshot of a security dashboard listing exposed secrets with filters for source (e.g., AWS S3).

Seamless Integration, Instant Value

Integrating Cremit’s AWS S3 Non-Human Identity Detection is remarkably simple and seamless. With just a few configuration steps, security teams can activate continuous scanning across your S3 environment without disrupting existing workflows. Cremit leverages read-only access to ensure a frictionless setup that delivers immediate visibility and actionable insights. You can check step by of the integration process here.

Take Action Now

Don’t let unmanaged NHIs compromise your security posture. Cremit’s AWS S3 NHI Detection of AWS S3 along with other cloud environments offers immediate insights and control to proactively secure your cloud environment.

Start now and see how easily you can integrate our solution into your existing security framework. Contact us today or visit our integration guide[LINK] to learn more about implementing AWS S3 NHI Detection into your workflows.

Unlock AI-Driven Insights to Master Non-Human Identity Risk.

Go beyond basic data; unlock the actionable AI-driven insights needed to proactively master and mitigate non-human identity risk

Get started

A dark-themed cybersecurity dashboard from Cremit showing non-human identity (NHI) data analysis. Key metrics include “Detected Secrets” (27 new) and “Found Sensitive Data” (58 new) from Jan 16–24, 2024. Two donut charts break down source types of detected secrets and sensitive data by platform: GitHub (15k), GetResponse (1,352), and Atera (352), totaling 16.9k. The dashboard includes a line graph showing trends in sensitive data over time, and bar charts showing the top 10 reasons for sensitive data detection—most prominently email addresses and various key types (API, RSA, PGP, SSH).

Blog

Explore more news & updates

Stay informed on the latest cyber threats and security trends shaping our industry.

OWASP NHI5:2025 Insecure Authorization Deep Dive

Explore OWASP NHI5: Insecure Authorization. See how Non-Human Identities gain excess privileges, causing breaches. Learn countermeasures like Zero Trust & least privilege.