Palo-Alto

Here’s the uncomfortable truth about deploying AI agents in enterprise cloud environments: the threat model most security teams are using is wrong. They’re thinking about agents as external attack surfaces — inputs to sanitize, outputs to validate. But Palo Alto Networks’ Unit 42 research team just demonstrated something more insidious: your agents can become insider threats from within your own cloud. The target of their latest research is Google Cloud’s Vertex AI Agent Engine, and the findings are significant enough that Google updated its documentation following responsible disclosure. ...

If there was one message emanating from day two of RSAC 2026, it was this: agentic AI security is no longer a niche concern. It’s the defining enterprise security challenge of 2026, and the industry is mobilizing fast. From CrowdStrike’s new runtime protection tools to Palo Alto Networks’ Prisma AIRS 3.0 and a wave of vendors rethinking what “identity” means in a world of autonomous digital workers, Day 2 of the conference made clear that the security industry is finally taking AI agents seriously. ...

Researchers at Palo Alto Networks’ Unit 42 have published documentation of real-world indirect prompt injection attacks — and this is one of those security stories that deserves more attention from the AI builder community than it’s currently getting. The attack is conceptually simple and practically dangerous: a malicious actor embeds hidden instructions in a website’s content. When an AI agent browses that page as part of an automated task, it reads the hidden instructions and executes them — without the user ever seeing what happened. ...