< ciso
brief />
Tag Banner

All news with #agentic ai tag

619 articles · page 15 of 31

AI Agents Invalidate the Traditional Cyber Kill Chain

⚠️ AI agents embedded across SaaS environments can render the traditional kill chain ineffective when they are compromised. The piece cites a September 2025 Anthropic disclosure where a state-backed actor used an AI coding agent to perform autonomous espionage, handling the majority of tactical operations. Because agents already hold broad permissions and move data as part of normal workflows, a breach looks like legitimate activity. Reco is positioned as a solution to discover agents, map blast radius, enforce least privilege, and detect anomalous agent behavior in real time.
read more →

Charlotte AI AgentWorks: Agentic SOAR for Modern SOCs

🔐 CrowdStrike introduces Charlotte AI AgentWorks and Charlotte Agentic SOAR to enable agentic security operations that orchestrate context-aware agent fleets and automate responses at machine speed. The platform integrates frontier models from Anthropic, NVIDIA and OpenAI and leverages Falcon telemetry, threat intelligence, and industry partners to keep agents context-aware and secure. Built-in guardrails preserve human oversight and governed autonomy while mission-ready agents handle tasks from triage to malware analysis. Customers report sharply reduced manual workloads, restored analyst capacity, and improved decision accuracy.
read more →

Governing AI Agent Behavior Across Intent Layers Guide

🧭 This article presents a practical framework for governing AI agents by aligning user, developer, role-based, and organizational intent. It prescribes a precedence model—organization, role, developer, then user—to resolve conflicts and preserve security and compliance. The authors illustrate expected agent behaviors (refuse, escalate, clarify, or proceed) and advocate for guardrails, least-privilege access, continuous evaluation, telemetry, and human-in-the-loop controls to sustain safe, reliable agent operations.
read more →

Gartner Market Guide Marks Emergence of Guardian Agents

🔒 Gartner's inaugural Market Guide for Guardian Agents defines a new enterprise control layer that supervises AI agents to keep their actions aligned with organizational goals and boundaries. The article stresses risks from unmanaged non-human identities—so-called identity dark matter—and lists mandatory capabilities across visibility, continuous assurance, and runtime enforcement. It urges enterprises to adopt an enterprise-owned guardian layer rather than relying solely on platform-native controls.
read more →

Autonomous AI Adoption Is Rising — Benefits and Risks

🤖 Early this year, enterprises began experimenting with autonomous, agentic tools such as Anthropic’s Claude Cowork and the open-source OpenClaw, which can access apps, files and the web to execute multi-step workflows on users’ behalf. Proponents highlight large efficiency gains and the ability to offload routine IT tasks to non-technical staff, while security researchers warn of misalignment, prompt‑injection flaws and unintended destructive actions. IT leaders are advised to permit controlled experimentation, enforce strict permissions and monitoring, and invest in clean operational context to reduce amplified mistakes and limit shadow‑AI risk.
read more →

Microsoft Open Source and AKS at KubeCon Europe 2026

🚀 At KubeCon + CloudNativeCon Europe 2026, Microsoft outlined coordinated open-source and AKS enhancements designed to bring AI workloads to Kubernetes with enterprise-grade operational patterns. Upstream work includes DRA reaching GA, Workload Aware Scheduling for Kubernetes 1.36, DRANet Azure RDMA compatibility, and new projects such as AI Runway, HolmesGPT (CNCF Sandbox), and Dalec. AKS platform updates add identity-aware networking with Azure Kubernetes Application Network, meshless Istio routing, WireGuard and Cilium-based encryption, built-in GPU telemetry into managed Prometheus/Grafana, per-flow L3/L4 and L7 observability, a managed Cilium cluster mesh via Fleet Manager, Elastic SAN shared storage, AKS Desktop GA, and safer upgrades with blue-green agent pool upgrades and agent pool rollback.
read more →

RSAC '26: Supercharging Agentic AI Defense with Threat Intel

🔒 Google Cloud outlined a coordinated set of AI-driven security advances at RSAC ’26, anchored by the completed acquisition of Wiz and new agentic defense capabilities. The company highlighted Mandiant's M-Trends 2026 findings on rapid adversary operations and published guidance on AI risk and resilience. Previewed offerings include Google Security Operations with autonomous triage agents, dark web intelligence powered by Gemini, and expanded protections across model, data, and network security.
read more →

Agentic Commerce Risks: AI-Enabled Retail Fraud Scenarios

🔐At the NRF Big Show in January 2026, Google introduced the Universal Commerce Protocol (UCP) and highlighted compatibility with the Agent Payments Protocol (AP2), promising tokenized payments and verifiable credentials. Unit 42 warns that indirect prompt injection—where agents ingest hidden instructions while browsing—can enable novel fraud such as gift card payload poisoning and refund logic hijacking. Industry forecasts (Bain, McKinsey) predict substantial agentic commerce adoption, increasing the attack surface. Recommended mitigations include protocol guardrails (AP2), Know Your Agent, agent reputation scoring, Unit 42 AI Security Assessments and Prisma AIRS.
read more →

Amazon Bedrock AgentCore Runtime Adds WebRTC Support

🔊 Amazon Bedrock AgentCore Runtime now supports WebRTC for low-latency, bidirectional streaming between clients and agents, enabling real-time audio and video in browser and mobile applications. WebRTC complements existing WebSocket support by providing peer-to-peer, UDP-based media transport optimized for voice agents and other media-intensive experiences. AgentCore Runtime supports managed TURN via Amazon Kinesis Video Streams, third-party providers, or self-hosted TURN, and the capability is available in 14 AWS Regions.
read more →

CTI-REALM: Benchmark for End-to-End Detection Rules

🔍 Microsoft introduces CTI-REALM, an open-source benchmark that evaluates AI agents on end-to-end detection engineering by turning real-world cyber threat intelligence into validated detections. The benchmark places agents in realistic, tool-rich environments where they must read CTI reports, explore telemetry, iterate on KQL queries, and produce Sigma rules and KQL-based logic scored against ground truth across Linux, AKS, and Azure. CTI-REALM's checkpoint-based scoring surfaces whether failures arise from CTI comprehension, technique mapping, data-source selection, or query construction, helping teams decide where human oversight and guardrails are required.
read more →

Amazon Polly adds 10 voices, regions, and streaming

🔊 Amazon Web Services announced general availability of 10 new highly expressive Generative voices in Amazon Polly, covering eight locales including American, British, New Zealand, and Singapore English, plus French, Italian, German, and Swiss German. The Generative engine is now hosted in two additional regions — Europe (London) and Canada (Central) — and introduces a Bidirectional Streaming API. The new streaming capability lets customers send text and receive synthesized audio simultaneously, simplifying low-latency integrations with LLM-based systems for chatbots, game characters, and other real-time speech applications.
read more →

Securing Agentic AI: End-to-End Enterprise Protections

🔒 Microsoft presents an end-to-end strategy to secure agentic AI with the new Agent 365 control plane and updates across Microsoft Defender, Entra, Purview, and Sentinel. Announced for RSAC 2026, these measures focus on visibility, continuous identity protection, data loss prevention for Copilot prompts, and prompt-injection defenses to help organizations observe, govern, and defend agent ecosystems at scale.
read more →

AWS MCP Server (Preview) adds monitoring and semantic search

📈 The AWS MCP Server (Preview) now publishes operational metrics to Amazon CloudWatch and adds semantic similarity search for Agent SOP discovery. Metric publishing under the AWS-MCP namespace tracks invocation counts, success rates, client and server errors, and throttling for tools such as call_aws and retrieve_agent_sop, enabling alarms and visibility into agent-driven activity. The documentation search (search_documentation) now returns relevant Agent SOPs alongside AWS docs, helping AI assistants find the correct workflows.
read more →

Cloudflare Workers AI Adds Frontier Open-Source Models

🤖 Cloudflare’s Workers AI now hosts frontier open-source models, beginning with Kimi K2.5, a 256k-context model that supports multi-turn tool calling, vision inputs, and structured outputs. The release enables organizations to run full agent lifecycles on Cloudflare’s Developer Platform, leveraging primitives like Durable Objects and Workflows. Cloudflare emphasizes improved price-performance, prefix caching, a session-affinity header, and a redesigned asynchronous API to lower latency and inference costs for agentic workloads.
read more →

Agentic Era: How AI Is Reshaping the Cyber Threat Landscape

🤖 Between January and February 2026, AI-assisted malware development matured from experimentation into operational capabilities that materially change attack economics. What once required coordinated teams can now be executed by a single experienced developer using an AI-powered IDE, accelerating weaponization, iteration, and delivery of attacks. Enterprise productivity and development tools have become enlarged attack surfaces, while automation and agentic workflows enable faster, more evasive intrusion chains. Defenders must shift toward behavior-based detection, robust telemetry, and secure development and supply chain controls.
read more →

Navigating Security Tradeoffs for Enterprise AI Agents

🔒 Unit 42 examines the security tradeoffs of agentic AI, spotlighting the early 2026 Clawdbot surge and pervasive vulnerabilities such as exposed gateways, plaintext credentials, and overbroad permissions. The piece identifies two primary threat paths: malicious model files and compromised Model Context Protocol (MCP) servers, and explains how compromised agents can act as powerful insider threats. Practical guidance includes scanning and sandboxing models, preferring trusted remote MCPs or auditing local MCP code, enforcing strict least-privilege tool access, implementing prompt-injection guardrails, and maintaining detailed logging and policy reviews.
read more →

Orchestrator Pattern for Distributed AI Agents at Scale

🤖 The post proposes the orchestrator pattern to turn monolithic AI scripts into a team of specialized, distributed microservices that integrate directly with existing frontends. It demonstrates using Google's Agent Development Kit (ADK), the Agent-to-Agent (A2A) protocol, and Cloud Run to host separate researcher, judge, and orchestrator services. The design enables independent scaling, strict JSON contracts for reliable decision-making, and language-agnostic implementations. The authors emphasize production hardening: secure agent endpoints, mitigate latency across hops, and implement robust retries and error handling.
read more →

Amazon Quick Now Available in AWS Tokyo Region for Japan

📍 Amazon has launched Amazon Quick in the AWS Asia Pacific (Tokyo) region (ap-northeast-1), enabling Japan-based customers to use its agentic AI capabilities while addressing local and regional data sovereignty requirements. The service delivers AI-powered chat, Research, Spaces, Flows, and QuickSight dashboards. The announcement states customer data will be stored and processed locally within the London region and supports in-region inference through JP-CRIS, routing inference requests exclusively within Japanese AWS Regions. Regulated industries such as financial services, healthcare, and the public sector are specifically called out as beneficiaries.
read more →

Amazon Quick launches in AWS Frankfurt (eu-central-1)

🇩🇪 Amazon Quick is now available in the AWS Europe (Frankfurt) region (eu-central-1). This launch lets customers in Germany use Amazon Quick capabilities—AI-powered chat, Research, Spaces, Flows, and QuickSight dashboards—with data stored and processed locally within the Frankfurt region. The expansion includes in-region inference via EU-CRIS, ensuring inference traffic stays inside European AWS Regions. Regulated industries such as financial services, healthcare, and the public sector can meet GDPR and local data sovereignty requirements.
read more →

Amazon Quick Now Available in AWS London Region for UK

🚀 Amazon Quick is now available in the AWS Europe (London) region (eu-west-2), enabling UK customers to use Amazon Quick with data stored and processed locally to meet regional requirements. The service delivers AI-powered chat, Research, Spaces, Flows, and QuickSight dashboards that act as an agentic teammate, enabling users to get answers and take actions without switching applications. In-region inference is enforced via EU-CRIS, routing requests exclusively within European AWS Regions and supporting regulated sectors such as financial services, healthcare, and the public sector.
read more →