Nestec partner portal

All important information at your fingertips. Access the partner portal or register if you don't have an account open.

Offers, Invoices, Licenses

All important documents in one place. You can download your offers, invoices, and licenses at any time.

Online orders

You can order all your licenses directly through nestec web-SHOP.

NESTEC Partner Login

Stay registered
Blog Post Selected Article
15.05.2026 By
Jurica Parsic
Technology, News

Cloud secrets and AI keys at risk

According to a recent Sentinel One report, AI adoption has become the primary driver of cloud risk, with AI specific credential exposure increasing by 140% and “Shadow AI” creating unmonitored attack surfaces. Attackers are exploiting legacy vulnerabilities to gain access and utilizing exposed API keys to manipulate AI models, prompting a need for continuous surface monitoring and automated secrets management.

Dangers of using unmanaged AI tools

In the current landscape, the ubiquity and accelerated growth of AI tools have given rise to so called “Shadow AI” that is defined as the unauthorized adoption of AI applications within a work environment without IT permission or security protocols.

Compromised AI API keys pose a high risk because they allow attackers to gain access to sensitive data through connected business systems (example CRM, analytics) and manipulate models through prompt injection and data poisoning.

How to mitigate risks

Addressing these risks of AI integration and cloud secrets requires a layered, objective approach to security hardening, focusing on continuous monitoring, automated governance, and robust credential management.

Sentinel Ones Singularity platform through CNAPP (Cloud-Native Application Protection Platform) serves as a preventive secret's scanner. It searches public and private code repositories and cloud configurations to detect over 750 types of manually typed passwords, AWS tokens or LLM API keys before they reach production and become prey for attackers.

Ranger is a hardware-free network module that acts as a smart scanner to detect Shadow AI by passively and actively analysing all local network traffic. By fingerprinting applications, identifying unauthorized AI domains, and flagging communication anomalies, it immediately alerts IT teams to unsanctioned AI activities on specific endpoints.

Behavioral AI monitors behavior in real time and looks for deviations from the norm. With compromised AI keys, it:

  1. Identifies anomalies in API requests

  2. Detects Prompt Injection Attack

  3. Event linking to Storyline

In the end, securing the future is not about banning AI and not using the tools or agents, but rather ensuring its smart and automated governance. By implementing a unified platform that combines visibility, prevention, and behavioural response, modern MSP-s can confidently implement innovation and still ensure that their data, processes, and AI systems remain fully protected.

Source: https://www.sentinelone.com/lp/ai-cloud-exploit-paths-report/

About autor

Jurica Parsic IT Support Specialist

A seasoned professional in data backup & disaster recovery, virtualization and cybersecurity with more than 5 years of experience in this field. Working closely with global vendors, IT resellers and IT service providers to develop a deep understanding of the technologies, processes and best practices involved in ensuring security and business continuity for a wide range of organizations, from small businesses to large corporations.