Noma Security Archives

The Half of Agent Security You’re Not Governing

Jack Poller | May 4, 2026 | agent governance, AI agent security, Lethal by Design, LLM Blast Radius, MCP servers, No Excessive CAP Framework, Noma Security, prompt injection, Skills vs Tools

The governance of AI agents faces a fundamental asymmetry: while MCP servers provide structured logs, the "Skills" that drive agent reasoning remain forensic black holes. As high-risk capabilities—such as arbitrary code execution ...

Security Boulevard

AI Agents: Who’s There? What Are They Doing? Most Security Teams Don’t Know

Teri Robinson | April 10, 2026 | Agentic AI Governance, AI attack surface, AI Data Access, AI ROI 2026, Autonomous System Oversight, Cequence Security, data sovereignty, Data Trust, identity-centric security, Mark McClain, MIND Research 2026, Noma Security, Non-Human Identities, Sailpoint, Shadow GenAI

No one seems to know what AI agents are doing, even the companies that keep them. MIND research underscores that AI Agents have gotten away from security teams and getting a fix ...

Security Boulevard

MCP, vulnerabilities, F5, vulvisibility, vulnerabilities, CAST AI, KSPM, Google Kubernetes vulnerabilities

Indirect Malicious Prompt Technique Targets Google Gemini Enterprise

Michael Vizard | December 9, 2025 | GeminiJack, Google Enterprise, malicious prompt, Noma Security

Noma Security today revealed it has discovered a vulnerability in the enterprise edition of Google Gemini that can be used to inject a malicious prompt that instructs an artificial intelligence (AI) application ...

Security Boulevard

Bionic Hackbots Rise, Powerful Partners to Humans

The rapid rise of AI and automation has helped create a new breed of researcher — the bionic hacker. Think of a Steve Austen-type researcher, only instead of body parts replaced by ...

Security Boulevard

Noma Security

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On