Palo Alto Networks to Acquire Koi Security for Agentic Endpoint Protection


Palo Alto Networks agreed to buy Koi Security, a pioneer in agentic endpoint security. The deal expands their AI defenses to cover autonomous agents and plugins. It addresses growing risks from AI tools running with high system privileges.

AI agents now embed in enterprise workflows deeply. They read files, run scripts, and access APIs freely. Traditional endpoint tools miss these threats since agents act like trusted insiders. Attackers chain exploits across frameworks to hijack them.

Koi Security solves this with full visibility into agent behavior. Their platform governs plugins, detects anomalies, and blocks malware at runtime. Post-acquisition, it joins Prisma AIRS and Cortex XDR for unified AI security.

Lee Klarich, Palo Alto’s Chief Product Officer, called agents “ultimate insiders.” He stressed governance needs as AI scales. Koi CEO Amit Assaraf said the deal brings “security by design” to global enterprises.

Agentic Endpoint Risks

Enterprises face new attack surfaces from AI automation. Agents bypass old defenses with legitimate privileges. Attackers target API flaws, auth bypasses, and code injection.

Traditional EDR focuses on executables. It ignores agent scripts and plugins. This creates blind spots in AI-native setups.

Koi provides runtime monitoring for every agent. It flags unusual data flows and execution patterns. Integration with Palo Alto tools adds policy enforcement across clouds and endpoints.

Acquisition Benefits Table

ComponentKoi ContributionPalo Alto Integration
VisibilityAgent/plugin trackingCortex XDR insights
GovernanceRuntime policiesPrisma AIRS platform
Threat DetectionAnomaly blockingAI attack surface view
ResponseAutomated quarantineUnified security ops
ScaleEnterprise coverageGlobal deployment

The move positions Palo Alto as AI cybersecurity leader. It covers networks, clouds, and now intelligent agents fully.

Strategic Impact

Palo Alto gains edge in agentic security fast. Koi’s tech scales their platform instantly. Enterprises get tools for safe AI adoption.

Competitors lag in this space. The deal shows AI threats demand new defenses. Teams can secure agents without slowing innovation.

FAQ

What is agentic endpoint security?

Protection for AI agents with system access. Koi monitors their actions like insiders.

Why acquire Koi now?

AI agents create blind spots. Traditional tools fail against them. Palo Alto fills the gap.

How does Koi integrate?

Into Prisma AIRS and Cortex XDR. Adds agent views to existing platforms.

Who leads the deal?

Lee Klarich (Palo Alto CPO) and Amit Assaraf (Koi CEO). See press release linked above.

What risks do AI agents pose?

Hijacking for data theft, RCE, lateral movement. They hold deep privileges by design.

Readers help support VPNCentral. We may get a commission if you buy through our links. Tooltip Icon

Read our disclosure page to find out how can you help VPNCentral sustain the editorial team Read more

User forum

0 messages