Palo Alto Networks to Acquire Koi Security for Agentic Endpoint Protection
2 min. read 
Published on
Palo Alto Networks agreed to buy Koi Security, a pioneer in agentic endpoint security. The deal expands their AI defenses to cover autonomous agents and plugins. It addresses growing risks from AI tools running with high system privileges.
AI agents now embed in enterprise workflows deeply. They read files, run scripts, and access APIs freely. Traditional endpoint tools miss these threats since agents act like trusted insiders. Attackers chain exploits across frameworks to hijack them.
Access content across the globe at the highest speed rate.
70% of our readers choose Private Internet Access
70% of our readers choose ExpressVPN
Browse the web from multiple devices with industry-standard security protocols.
Faster dedicated servers for specific actions (currently at summer discounts)
Koi Security solves this with full visibility into agent behavior. Their platform governs plugins, detects anomalies, and blocks malware at runtime. Post-acquisition, it joins Prisma AIRS and Cortex XDR for unified AI security.
Lee Klarich, Palo Alto’s Chief Product Officer, called agents “ultimate insiders.” He stressed governance needs as AI scales. Koi CEO Amit Assaraf said the deal brings “security by design” to global enterprises.
Agentic Endpoint Risks
Enterprises face new attack surfaces from AI automation. Agents bypass old defenses with legitimate privileges. Attackers target API flaws, auth bypasses, and code injection.
Traditional EDR focuses on executables. It ignores agent scripts and plugins. This creates blind spots in AI-native setups.
Koi provides runtime monitoring for every agent. It flags unusual data flows and execution patterns. Integration with Palo Alto tools adds policy enforcement across clouds and endpoints.
Acquisition Benefits Table
| Component | Koi Contribution | Palo Alto Integration |
|---|---|---|
| Visibility | Agent/plugin tracking | Cortex XDR insights |
| Governance | Runtime policies | Prisma AIRS platform |
| Threat Detection | Anomaly blocking | AI attack surface view |
| Response | Automated quarantine | Unified security ops |
| Scale | Enterprise coverage | Global deployment |
The move positions Palo Alto as AI cybersecurity leader. It covers networks, clouds, and now intelligent agents fully.
Strategic Impact
Palo Alto gains edge in agentic security fast. Koi’s tech scales their platform instantly. Enterprises get tools for safe AI adoption.
Competitors lag in this space. The deal shows AI threats demand new defenses. Teams can secure agents without slowing innovation.
FAQ
Protection for AI agents with system access. Koi monitors their actions like insiders.
AI agents create blind spots. Traditional tools fail against them. Palo Alto fills the gap.
Into Prisma AIRS and Cortex XDR. Adds agent views to existing platforms.
Lee Klarich (Palo Alto CPO) and Amit Assaraf (Koi CEO). See press release linked above.
Hijacking for data theft, RCE, lateral movement. They hold deep privileges by design.
Read our disclosure page to find out how can you help VPNCentral sustain the editorial team Read more
Improve this guide
User forum
0 messages