From Blind Spot to Full Visibility in One Day

8Percent, a leading P2P lending platform in Korea, operates critical financial services using various development and collaboration tools including GitHub, Slack, Confluence, Jira, and Notion. However, the security team had no visibility into credentials scattered across these platforms. API keys, tokens, and passwords were potentially exposed in code repositories, chat messages, and documentation, but there was no way to detect or monitor them. This was a threat they didn't even know existed — a blind spot in their security posture. As a regulated financial institution, any credential leak could result in serious compliance violations and damage to customer trust.

8Percent deployed Cremit to establish comprehensive credential detection across all five platforms. The security team led the implementation, connecting GitHub for source code scanning and Slack, Confluence, Jira, and Notion for collaboration tool coverage. With Cremit's agentless SaaS integration approach, the entire deployment was completed in a single day. Threat detection began immediately upon starting the proof of concept, requiring no complex installation or configuration process.

The results exceeded expectations from day one. Within 24 hours of deployment, Cremit completed a full historical scan across all connected platforms, uncovering multiple credential exposures that had gone undetected. The false positive rate was zero — every alert represented a genuine security concern requiring attention. The security team could now focus entirely on actual threats rather than wasting time filtering through noise. What was once an invisible blind spot became a fully visible and manageable security domain in just one day.