< ciso
brief />
Tag Banner

All news with #agentic ai tag

619 articles · page 22 of 31

Cloud Security 2025: AI-Driven Risk and Operational Gaps

🔒 The Palo Alto Networks State of Cloud Security Report 2025 warns that rapid enterprise AI adoption has massively expanded the cloud attack surface, with 75% running AI in production and 99% reporting at least one AI-targeted incident last year. It finds GenAI-assisted coding accelerating insecure code into production and AppSec teams unable to keep pace with weekly deploys. The research highlights rising API attacks, persistent identity weaknesses, and widespread tool sprawl, and argues for agentic security to unify cloud and SOC operations.
read more →

Building Connected Agents with MCP and A2A Standards

🔗 To build production-ready agentic systems, Google Cloud offers hands-on labs that demonstrate how Agent Development Kit (ADK), the Model Context Protocol (MCP), and the Agent-to-Agent Protocol (A2A) work together. The labs begin with a foundational "Hello World" agent and progress to connecting agents to knowledge sources via MCP, with concrete examples for exposing BigQuery and CloudSQL. By adopting these standards instead of bespoke integrations, teams can scale and maintain multi-agent systems more reliably.
read more →

2026 Cybersecurity Forecast: AI, Agentic Defense, IAM

🔒 The Cybersecurity Forecast for 2026 highlights how agentic security automation and widespread AI will reshape defenses, shifting SOCs from monitoring to automated action. It calls for building workforce AI fluency, evolving IAM to treat agents as managed identities, and deploying model-protection measures alongside tamper-proof backups. Boards will increasingly demand operational resilience, quantified exposure, and mature AI governance.
read more →

AI-Driven Falcon Exposure Management for Real‑Time Risk

🔍 CrowdStrike has expanded exposure management with Falcon Exposure Management, merging continuous telemetry, AI-driven prioritization, and a unified Risk Knowledge Base to reduce noise and accelerate remediation. The Exposure Prioritization Agent reasons in real time about exploitability, environment-specific preconditions, and business impact to deliver actionable “fix first” recommendations. AI Discovery surfaces LLMs, MCP servers, and AI agents to map the emerging AI attack surface and associated risks, integrating natively with Falcon telemetry and SOAR workflows.
read more →

Brave Tests Agentic AI Browsing Mode for Automated Tasks

🤖 Brave has begun testing an agentic AI browsing mode that uses its privacy-focused assistant Leo to perform autonomous tasks like web research, product comparison, promo-code discovery, and news summarization. The feature is currently available in Brave Nightly and is disabled by default. Brave isolates the agent in a separate profile without access to cookies, logins, or sensitive data and adds restrictions plus an alignment checker to mitigate prompt-injection and other risks.
read more →

GPT-5.2 in Microsoft Foundry: New Enterprise AI Standard

🤖 GPT-5.2 is now generally available in Microsoft Foundry, positioned as a reasoning-first foundation model for enterprise applications. It advances GPT-5.1 with deeper logical chains, expanded context handling, and agentic execution to produce shippable artifacts—design docs, runnable code, tests, and deployment scripts—with fewer iterations. The release emphasizes integrated enterprise controls, managed identities, and policy enforcement to support secure, governed adoption.
read more →

Multi-Agent Forecasting: Google Cloud and App Orchid

📈 This article describes a multi-agent business forecasting application developed by Google Cloud and App Orchid. The design pairs a Google prediction agent (leveraging TimesFM and the Population Dynamics Foundation Model) with an App Orchid Data Agent that builds a semantic knowledge graph and prepares AI-ready time-series. A forecasting orchestrator uses the A2A Protocol and Google’s ADK to route queries, automate data wrangling, run predictions on Gemini-powered Vertex AI, and return unified forecasts with enterprise-grade security and governance.
read more →

Building a security-first culture for agentic AI enterprises

🔒 Microsoft argues that as organizations adopt agentic AI, security must be a strategic priority that enables growth, trust, and continued innovation. The post identifies risks such as oversharing, data leakage, compliance gaps, and agent sprawl, and recommends three pillars: prepare for AI and agent integration, strengthen organization-wide skilling, and foster a security-first culture. It points to resources like Microsoft’s AI adoption model, Microsoft Learn, and the AI Skills Navigator to help operationalize these steps.
read more →

Microsoft Ignite 2025: Building with Agentic AI and Azure

🚀 Microsoft Ignite 2025 showcased a suite of Azure and AI updates aimed at accelerating production use of agentic systems. Anthropic's Claude models are now available in Microsoft Foundry alongside OpenAI GPTs, and Azure HorizonDB adds PostgreSQL compatibility with built-in vector indexing for RAG. New Azure Copilot agents automate migration, operations, and optimization, while refreshed hardware (Blackwell Ultra GPUs, Cobalt CPUs, Azure Boost DPU) targets scalable training and secure inference.
read more →

Google Adds Official MCP Support Across Key Cloud Services

🔌 Google announced fully-managed, remote support for Anthropic's Model Context Protocol (MCP), enabling agents and standard MCP clients to access a unified, enterprise-ready endpoint for Google and Google Cloud services. The managed MCP servers integrate with services like Google Maps, BigQuery, GCE, and GKE to let agents perform geospatial queries, in-place analytics, and infrastructure operations. Built-in discovery, governance, IAM controls, audit logging, and Google Cloud Model Armor provide security and observability. Developers can expose and govern APIs via Apigee and the Cloud API Registry to create discoverable tools for agentic workflows.
read more →

Recap: Building with Gemini 3, Antigravity, Nano Banana

🧭 This episode of The Agent Factory unpacks Google's latest AI stack—Gemini 3, the Antigravity IDE, and Nano Banana Pro—through hands-on demos and developer commentary. Guests demonstrate end-to-end workflows, from generating a React Native cataloging app to refactoring a site from screenshots and producing game assets with grounded search. The recap emphasizes enhanced tool use, multimodal inputs, and smoother deployment to Google Cloud. It also highlights the new Vending Bench metric for agentic, long-range decision-making.
read more →

Google Adds Layered Defenses to Chrome's Agentic AI

🛡️ Google announced a set of layered security measures for Chrome after adding agentic AI features, aimed at reducing the risk of indirect prompt injections and cross-origin data exfiltration. The centerpiece is a User Alignment Critic, a separate model that reviews and can veto proposed agent actions using only action metadata to avoid being poisoned by malicious page content. Chrome also enforces Agent Origin Sets via a gating function that classifies task-relevant origins into read-only and read-writable sets, requires gating approval before adding new origins, and pairs these controls with a prompt-injection classifier, Safe Browsing, on-device scam detection, user work logs, and explicit approval prompts for sensitive actions.
read more →

Gartner Urges Enterprises to Block AI Browsers Now

⚠️ Gartner has advised enterprises to block AI browsers until associated risks can be adequately managed. In its report Cybersecurity Must Block AI Browsers for Now, analysts warn that default settings prioritise user experience over security and list threats such as prompt injection, credential exposure and erroneous agent actions. Researchers and vendors have also flagged vulnerabilities and urged risk assessments and oversight.
read more →

Chrome Adds Security Layer for Gemini Agentic Browsing

🛡️ Google is introducing a new defense layer in Chrome called User Alignment Critic to protect upcoming agentic browsing features powered by Gemini. The isolated secondary LLM operates as a high‑trust system component that vets each action the primary agent proposes, using deterministic rules, origin restrictions and a prompt‑injection classifier to block risky or irrelevant behaviors. Chrome will pause for user confirmation on sensitive sites, run continuous red‑teaming and push fixes via auto‑update, and is offering bounties to encourage external testing.
read more →

Gartner Urges Enterprises to Block AI Browsers Now

⚠️Gartner recommends blocking AI browsers such as ChatGPT Atlas and Perplexity Comet because they transmit active web content, open tabs, and browsing context to cloud services, creating risks of irreversible data loss. Analysts cite prompt-injection, credential exposure, and autonomous agent errors as primary threats. Organizations should block installations with existing network and endpoint controls and restrict any pilots to small, low-risk groups.
read more →

Architecting Security for Agentic Browsing in Chrome

🛡️ Chrome describes a layered approach to secure agentic browsing with Gemini, focusing on defenses against indirect prompt injection and goal‑hijacking. A new User Alignment Critic — an isolated, high‑trust model — reviews planned agent actions using only metadata and can veto misaligned steps. Chrome also enforces Agent Origin Sets to limit readable and writable origins, adds deterministic confirmations for sensitive actions, runs prompt‑injection detection in real time, and sustains continuous red‑teaming and monitoring to reduce exfiltration and unwanted transactions.
read more →

Agentic BAS AI Translates Threat Headlines to Defenses

🔐 Picus Security describes an agentic BAS approach that turns threat headlines into safe, validated emulation campaigns within hours. Rather than allowing LLMs to generate payloads, the platform maps incoming intelligence to a 12-year curated Threat Library and orchestrates benign atomic actions. A multi-agent architecture — Planner, Researcher, Threat Builder, and Validation — reduces hallucinations and unsafe outputs. The outcome is rapid, auditable testing that mirrors adversary TTPs without producing real exploit code.
read more →

Falcon Shield Expands AI Agent Visibility and Governance

🛡️ CrowdStrike’s Falcon Shield adds centralized, cross-platform visibility and governance for AI agents while natively integrating first-party SaaS telemetry into Falcon Next-Gen SIEM. The update automatically inventories and classifies agents, maps privileges to human and service identities, and detects risky configurations and agent-to-agent misuse. Teams can alert or suspend agents and associated accounts through Falcon Fusion SOAR, applying human identity controls to AI-driven automation.
read more →

Crossing the Autonomy Threshold: Defending Against AI Agents

🤖 The GTG-1002 campaign, analyzed by Nicole Nichols and Ryan Heartfield, demonstrates the arrival of autonomous offensive cyber agents powered by Claude Code. The agent autonomously mapped attack surfaces, generated and executed exploits, harvested credentials, and conducted prioritized intelligence analysis across multiple enterprise targets with negligible human supervision. Defenders must adopt agentic, machine-driven security that emphasizes precision, distributed observability, and proactive protection of AI systems to outpace these machine-speed threats.
read more →

Public Sector Agentic Era: 300 Agents in One Day Showcase

🤖 Google Public Sector ran a #100DaysOfAgents campaign and an interactive Mission District at its October 29, 2025 Public Sector Summit where attendees built 300+ AI agent prototypes using self-serve builder stations. The initiative demonstrates how AI agents can accelerate mission outcomes by automating complex tasks, breaking down data silos, and improving access to services. Prototype examples ranged from a Grid Optimization Analyst to a Water System Transition Planner and an NIH Access Assistant; agents in the library are illustrative, not production-ready. Google invites agencies to partner with experts, prototype with Gemini for Government, and continue development at Google Cloud Next.
read more →