All news with #agentic ai tag

🔒 Unit 42 examines the security tradeoffs of agentic AI, spotlighting the early 2026 Clawdbot surge and pervasive vulnerabilities such as exposed gateways, plaintext credentials, and overbroad permissions. The piece identifies two primary threat paths: malicious model files and compromised Model Context Protocol (MCP) servers, and explains how compromised agents can act as powerful insider threats. Practical guidance includes scanning and sandboxing models, preferring trusted remote MCPs or auditing local MCP code, enforcing strict least-privilege tool access, implementing prompt-injection guardrails, and maintaining detailed logging and policy reviews.

🤖 The post proposes the orchestrator pattern to turn monolithic AI scripts into a team of specialized, distributed microservices that integrate directly with existing frontends. It demonstrates using Google's Agent Development Kit (ADK), the Agent-to-Agent (A2A) protocol, and Cloud Run to host separate researcher, judge, and orchestrator services. The design enables independent scaling, strict JSON contracts for reliable decision-making, and language-agnostic implementations. The authors emphasize production hardening: secure agent endpoints, mitigate latency across hops, and implement robust retries and error handling.

📍 Amazon has launched Amazon Quick in the AWS Asia Pacific (Tokyo) region (ap-northeast-1), enabling Japan-based customers to use its agentic AI capabilities while addressing local and regional data sovereignty requirements. The service delivers AI-powered chat, Research, Spaces, Flows, and QuickSight dashboards. The announcement states customer data will be stored and processed locally within the London region and supports in-region inference through JP-CRIS, routing inference requests exclusively within Japanese AWS Regions. Regulated industries such as financial services, healthcare, and the public sector are specifically called out as beneficiaries.

🇩🇪 Amazon Quick is now available in the AWS Europe (Frankfurt) region (eu-central-1). This launch lets customers in Germany use Amazon Quick capabilities—AI-powered chat, Research, Spaces, Flows, and QuickSight dashboards—with data stored and processed locally within the Frankfurt region. The expansion includes in-region inference via EU-CRIS, ensuring inference traffic stays inside European AWS Regions. Regulated industries such as financial services, healthcare, and the public sector can meet GDPR and local data sovereignty requirements.

🚀 Amazon Quick is now available in the AWS Europe (London) region (eu-west-2), enabling UK customers to use Amazon Quick with data stored and processed locally to meet regional requirements. The service delivers AI-powered chat, Research, Spaces, Flows, and QuickSight dashboards that act as an agentic teammate, enabling users to get answers and take actions without switching applications. In-region inference is enforced via EU-CRIS, routing requests exclusively within European AWS Regions and supporting regulated sectors such as financial services, healthcare, and the public sector.

🚀 At SQLCon 2026 in Atlanta, Microsoft detailed enhancements that position its database portfolio as a foundation for agentic AI and unified analytics across edge, PaaS, and SaaS. Key announcements include Azure SQL innovations such as GitHub Copilot in SSMS, a one‑year Savings Plan for databases, and Hyperscale advances (vector index performance, SQL MCP Server, and larger vCore options). The new Database Hub in Microsoft Fabric (early access) and enterprise security features for SQL in Fabric aim to simplify migration, governance, and AI‑driven app development.

🔒 Reco has introduced Reco AI Agent Security, a capability designed to give enterprises visibility and control over autonomous AI agents operating across SaaS environments. The tool detects agent activity beyond traditional OAuth discovery by analyzing API call patterns, service-account correlations, and automation workflow signatures in platforms like Microsoft Copilot, ChatGPT, Zapier and n8n. It consolidates agent discovery, risk analysis, and governance into Reco's existing SaaS security platform.

🤖 This article introduces Dev Signal, a prototype multi-agent system built with Google ADK, the Model Context Protocol (MCP), and Cloud Run to automate discovery, grounding, and content creation. It outlines prerequisites, project structure, and an MCP-based toolset that integrates a Reddit discovery proxy, the managed Developer Knowledge MCP for documentation grounding, and a local Nano Banana Pro image generator. The piece explains secure secret handling, subprocess-based local tooling, and the ADK modular design to accelerate development.

🚀 Amazon OpenSearch Service now supports OpenSearch 3.5, introducing agentic AI enhancements, improved search relevance tooling, and expanded observability capabilities. The update adds persistent agentic conversation memory to capture multi-turn context and tool reasoning, plus context management that automatically truncates and summarizes inputs to reduce LLM token costs. A redesigned no-code agent interface with MCP integration and expanded search relevance workbench—including LLM-powered evaluation and scheduled experiments—helps teams tune and validate agent-driven search experiences without code.

🗣️ Amazon Connect now supports agentic speech-to-speech voice experiences in the Europe (London) AWS Region and introduces three new voices: Pedro (es-US), Amy (en-GB) and Brian (en-GB). These agentic AI agents can understand, reason and take action across voice and messaging channels, adapting responses to match customer tone and sentiment while preserving natural conversational pacing. The expansion increases regional availability and voice variety to help organizations deliver more personalized, automated customer interactions.

🌐 Amazon Web Services announced that Amazon Connect voice AI agents now support 13 additional languages, bringing the total supported locales to 40. New additions include Arabic (Saudi Arabia), Czech, Danish, Dutch (Belgium), English variants for Ireland, New Zealand and Wales, German (Switzerland), Icelandic, Romanian, Spanish (Mexico), Turkish, and Welsh. The update extends agentic self-service capabilities to more regions, enabling AI agents to understand, reason, and take action across voice and digital channels to automate routine and complex customer service tasks. See the Amazon Connect Administrator Guide for configuration details and the Amazon Connect website for broader product information.

🔊 Amazon Connect now offers generative text-to-speech voices in three additional AWS Regions: Europe (London), Asia Pacific (Seoul), and Asia Pacific (Sydney). The service adds nine new voices across US English, UK English, European French, German, and Italian, including Tiffany, Amy, Brian, Ambre, Florian, Tina, Lennart, Beatrice, and Lorenzo. These voices support Amazon Connect’s agentic self-service capabilities, enabling more natural, sentiment-aware voice interactions across voice and messaging channels. Organizations can deploy these voices to deliver human-like conversational experiences to a broader set of customers and locales.

🔐 At the Nvidia GTC conference CEO Jensen Huang introduced NemoClaw, a secure runtime for running OpenClaw-style agents built on the Nvidia Agent Toolkit and the broader NeMo ecosystem. Central to the offering is the open-source OpenShell runtime, which provides kernel-level sandboxing and a “privacy router” to monitor and block unsafe communications. Nvidia says NemoClaw is hardware-agnostic though optimized for its own microservices, and aims to make edge agent deployment viable for enterprises while researchers inspect it for CVE-level flaws.

🔐 Treat AI agents as first-class identities and enforce identity-based access across systems and APIs. The author argues CISOs must move beyond prompt guardrails to explicit authentication, scoped permissions, continuous logging, and monitoring of tokens, service accounts, OAuth grants, and keys. Organizations should discover shadow AI, map agent access, and enforce intent-aware controls. Full lifecycle governance — ownership, rotation, reviews, and decommissioning — is required to prevent privilege creep and data loss while enabling safe autonomy.

🔒 Enterprises are confronting a shift: autonomous AI agents now operate inside corporate environments with real permissions and real consequences. Security must move beyond build-time controls to continuous runtime monitoring that observes agent behavior, preserves tamper-proof logs, and applies agent-aware policies. Practical first steps include inventorying agents, extending EDR-style behavioral baselining, and designing incident-response playbooks that stop misbehaving agents without destroying evidence.

🚀 At NVIDIA GTC 2026, Google Cloud announced an expanded co‑engineering partnership with NVIDIA centered on the new Google Cloud AI Hypercomputer, designed to address the infrastructure demands of agentic and large-scale MoE workloads. The updates include momentum for G4 VMs powered by NVIDIA RTX Pro 6000 Server Edition, a preview of fractional G4 VMs using NVIDIA vGPU, and planned support for NVIDIA Vera Rubin NVL72 rack systems. Software integrations such as NVIDIA Dynamo with GKE Inference Gateway, Vertex AI Model Garden additions, and a public sector AI startup accelerator target lower latency, higher throughput, and more flexible consumption for inference and training.

🛡️Security validation must evolve from disconnected tests to continuous, context-aware assessment powered by agentic AI. The piece argues that defenders need to converge three perspectives — adversarial, defensive, and risk — into a unified discipline supported by a Security Data Fabric that unites Asset Intelligence, Exposure Intelligence, and Security Control Effectiveness. With real-time context, autonomous agents can plan, execute, and prioritize validation workflows, turning fragmented tool outputs into actionable evidence and faster remediation. The article highlights Picus Security and industry recognition as indicators that the market is moving toward CTEM-native, agentic validation.

🔒 China's CNCERT warned that OpenClaw, an open-source, self-hosted autonomous AI agent, ships with weak default security and broad system privileges that attackers can abuse to seize endpoints and exfiltrate data. The advisory highlights indirect prompt injection (IDPI/XPIA) risks where benign features like web-page summarization and messaging link previews are weaponized to embed malicious instructions or automatically leak secrets. Researchers at PromptArmor demonstrated a technique in which an agent constructs attacker-controlled URLs that, when rendered as link previews, transmit confidential data without user clicks. CNCERT also flagged risks from malicious skills, accidental destructive commands, and disclosed vulnerabilities, urging isolation, tightened network controls, credential protection, and cautious skill sourcing.

🚀 AWS and Kiro introduce the SAM Kiro Power, an agentic-AI extension that brings serverless application development expertise directly into local development environments. It dynamically loads SAM guidance to initialize, build, deploy, and locally test Lambda-based applications while enforcing security best practices for IAM. Built-in defaults require SAM resources and Powertools for AWS Lambda for observability and structured logging, accelerating the path from prototype to production.

🔒 Fortinet will have a prominent presence at the RSA Conference (March 23–26, 2026) in San Francisco, showcasing the Fortinet Security Fabric at booth #N5762 and in featured sessions. Attendees can join three highlighted sessions addressing agentic AI defenses, APT abuse of networking devices, and large-scale cybercrime disruption. The booth features 40+ presentations, six interactive demo kiosks, an Experts Bar, and one-on-one meeting options. Fortinet customers can access complimentary Expo Hall passes or discounted full-conference registration.