The NHI & Secrets Risk Report​

A Practical Guide for Security Architects and CISOs

Rise of the Machine Risks

43%

Of exposed secrets are found outside of code

144:1

Non-Human Identities now outnumber humans 144:1 (compared to 92:1 H1 2024)

1 in 20

AWS machine identities carry full admin privileges making them critical multipliers

Key Trends Shaping NHI Security

1. Agentic AI Inflation – Surge of LLM agents and automation bots

2. Secrets Without Sightlines – Why vaulting isn’t enough anymore

3. Real-Time or Bust – From posture to detection-driven defense

Send. Share. Expose.

Collaboration platforms and messaging apps are essential to fast-paced, SaaS-first organizations, but in 2025 they have quietly become hotspots for end-user secret exposure with about 14% of the secrets exposure share

More to Learn

The SharePoint Problem

“The secret is in a local file I saved on my laptop, what harm could it do?”

25 Most Exposed SaaS Secrets

If your SaaS tools issue an API key, chances are it’s been exposed somewhere

NHIs Built to Last, Forgotten Fast

NHIs are outliving their intended use and owner – remaining active without rotation, visibility, or ownership.

The NHIDR™ Risk Radar

The top five most common risks flagged by Entro’s NHIDR™ across our customer base.