Resources
  • eBooks
  • Reports
  • Case Studies
  • Demos
  • Videos
  • Value Calculator
  • Home
  • Resources
  • Videos
  • The API Secret Pandemic: Uncovering Critical API Secrets Embedded in Javascript Frontend Code at Scale
Video

Exposed API Tokens: Uncovering Critical Security Risks at Scale

Revisit one of our sessions from API Summit 2024!

Exposed API tokens present significant risks to organizations. This session showcases the findings of recent research that analyzed 1M domains and revealed over 18,000 API tokens and RSA keys (41% classified as highly critical). We'll detail unique web scanning methodology, sensitive data discoveries, and potential financial losses (e.g., $20M in vulnerable Stripe tokens). In addition, we'll cover remediation strategies and explore what it all means for the current state of API Security. Get equipped with knowledge of how to find API secrets at scale, and guidelines for effective risk mitigation.

Topics:API Security
|
Monitoring
|
API Summit
Powering the API world

Increase developer productivity, security, and performance at scale with the unified platform for API management, AI gateways, service mesh, and ingress controller.

Sign up for Kong newsletter

Platform
Kong KonnectKong GatewayKong AI GatewayKong InsomniaDeveloper PortalGateway ManagerCloud GatewayGet a Demo
Explore More
Open Banking API SolutionsAPI Governance SolutionsIstio API Gateway IntegrationKubernetes API ManagementAPI Gateway: Build vs BuyKong vs PostmanKong vs MuleSoftKong vs Apigee
Documentation
Kong Konnect DocsKong Gateway DocsKong Mesh DocsKong AI GatewayKong Insomnia DocsKong Plugin Hub
Open Source
Kong GatewayKumaInsomniaKong Community
Company
About KongCustomersCareersPressEventsContactPricing
  • Terms•
  • Privacy•
  • Trust and Compliance
  • © Kong Inc. 2025