This article is part of VentureBeat’s special issue, “The cyber resilience playbook: Navigating the new era of threats.” Read more from this special issue here.Generative AI poses interesting security questions, and as enterprises move into the agentic world, those safety issues increase. When AI agents enter workflows, they must be able to access sensitive data and documents to do their job — making them a significant risk for many security-minded enterprises.“The rising use of multi-agent systems will introduce new attack vectors and vulnerabilities that could be exploited if they aren’t secured properly from the start,” said Nicole Carignan, VP of strategic cyber AI at Darktrace. “But the impacts and harms of those vulnerabilities could be even bigger because of the increasing volume of connection points and interfaces that multi-agent systems have.”Why AI agents pose such a high security riskAI agents — or autonomous AI that executes actions on users’ behalf — have become extremely popular in just the last few months. Ideally, they can be plugged into tedious workflows and can perform any task, from something as simple as finding information based on internal documents to making recommendations for human employees to take.But they present an interesting problem for enterprise security professionals: They must gain access to data that makes them effective, without accidentally opening or sending private information to others. With agents doing more of the tasks human employees used to do, the question of accuracy and accountability comes into play, potentially becoming a headache for security and compliance teams. Chris Betz, CISO of AWS, told VentureBeat that retrieval-augmented generation (RAG) and agentic use cases “are a fascinating and interesting angle” in security. “Organizations are going to need to think about what default sharing in their organization looks like, because an agent will find through search anything that will support its mission,” said Betz. “And if you overshare documents, you need to be thinking about the default sharing policy in your organization.”Security professionals must then ask if agents should be considered digital employees or software. How much access should agents have? How should they be identified?AI agent vulnerabilitiesGen AI has made many enterprises more aware of potential vulnerabilities, but agents could open them to even more issues.“Attacks that we see today impacting single-agent systems, such as data poisoning, prompt injection or social engineering to influence agent behavior, could all be vulnerabilities within a multi-agent system,” said Carignan. Enterprises must pay attention to what agents are able to access to ensure data security remains strong. Betz pointed out that many security issues surrounding human employee access can extend to agents

British cybersecurity group Darktrace has announced the proposed acquisition of Cado Security, a cloud-based security specialist, as it is set to become "more acquisitive" after being taken private last year.

CAMBRIDGE, UK, Jan. 9, 2025 /PRNewswire/ -- Darktrace, a global leader in AI for cybersecurity, today announced the proposed acquisition of Cado Security (Cado), a UK-based cyber investigation and response solution provider for the hybrid and multi-cloud world. Cado Security delivers broad support across multi-cloud, container, serverless, SaaS, and on-premises environments, eliminating blind spots in incident response. The acquisition is subject to receipt of regulatory approval and is expected to complete in February.A leader in cloud data capture and forensics, Cado examines the intricacies of nearly any system, capturing a snapshot of data stored on the device and then conducting forensic investigations to uncover signs of compromise or threats. Darktrace intends to accelerate the growth of Cado's existing products through investment while also combining Cado's forensic investigation technology with Darktrace's existing ActiveAI Security Platform™, enhancing data collection across multiple cloud environments to better defend customers' operations. This richer data set can also enable significant augmentation to Darktrace's Cyber AI Analyst™ which investigates alerts, streamlines investigations and prioritizes incidents, reducing workload and alert fatigue for customers' cyber teams.Cado was founded by James Campbell, CEO, and Chris Doman, CTO