CyberArk Warns About Cybersecurity Threats To AI Agents And LLM
Are digital entities looking for vulnerabilities in your systems and workflows?
The 2025 Forbes AI 50 list highlights a turning point: 'AI graduated from an answer engine to an action engine in the workplace.' Like other graduates entering the workforce, AI agents meet fresh opportunities, face unfamiliar responsibilities, and must overcome new challenges.
As more AI agents are deployed in enterprises worldwide, the scale and scope of cyberattacks escalate, as many organizations embed them into critical systems without proper safeguards. AI agents represent new classes of cybersecurity vulnerabilities, providing new venues for infiltrating and manipulating enterprise systems.
At CyberArk IMPACT 2025 last week, Lavi Lazarovitz, VP of cyber research at CyberArk, presented an initial analysis of the range of threats posed by the brand-new agentic systems. 'Agents are distinguished by autonomy and proactivity,' said Lazarovitz. As such, they are turning into the most privileged digital identities enterprises have ever seen.
The cybersecurity landscape for AI agents will continue to evolve, and at present, there is no silver bullet that can fully mitigate all security risks they pose, according to CyberArk researchers. The best approach is what they call 'defense in depth,' or implementing multiple layers of protection at different stages of the workflow and across various security measures.
More broadly, CyberArk warns enterprises to 'never trust an LLM.' Attackers will always find ways to exploit and manipulate these models, so security must be built around them, not within them. At IMPACT 2025, Retsef Levi, Professor of Operations Management at the MIT Sloan School of Management, spoke about the 'Very real risk of creating complex systems with opaque operational boundaries and eroded human capabilities that are prone to major disasters and are not resilient.'
Using an LLM is like taking a drug without knowing what's in it, says Levi. The mystery is three-dimensional: The humongous number of parameters obscuring what the model can do; the open data, internet data, on which the model is based (as opposed to in-house, clean data); and the source, the origin of the model's development.
The key challenge in implementing AI agents, says Levi, is making sure they 'don't degenerate and erode critical human capabilities,' especially in the areas where humans are superior to AI: Identifying nuance; sensitivity to changing conditions, exceptions, and anomalies; and sensing a new context. 'Don't confuse performance with capability,' advises Levi. As generative AI and LLMs enhance cyberattack capabilities by using machines to manipulate humans or other machines, Levi recommends developing 'measurements for understanding your digital supply chain,' identifying potential vulnerabilities.
The research effort to uncover the new 'attack surface' created by generative AI is growing fast. Startup Pillar Security, for example, released a report analyzing over 2,000 real-world LLM-powered applications. Pillar found that 90% of successful attacks resulted in the leakage of sensitive data and that adversaries require only 42 seconds on average to complete an attack, highlighting the speed at which vulnerabilities can be exploited.
This present state of attacks on generative AI will get worse in the near future. By 2028, according to Gartner, '25% of enterprise breaches will be traced back to AI agent abuse, from both external and malicious internal actors.'
The interest in investing or acquiring related cyber defense skills and solutions is also growing. For example, Palo Alto Networks is set to buy AI cybersecurity company Protect AI for an estimated $650-700 million, sources informed Globes last week. 'Protect AI might end up being the second acquisition [after Cisco's acquisition of Robust Intelligence for a reported $400 million] in the nascent AI security market, but it certainly won't be the last,' reports Information Security Media Group.
AI agents' autonomous nature and complex decision-making capabilities introduce various threats and vulnerabilities that span security, privacy, ethical, operational, legal, and technological domains. These real-world challenges will probably not slow down the widespread deployment of AI agents. According to CB Insights, mentions of 'agent' and 'agentic' on earnings calls surged in the first quarter of 2025, with both hitting all-time highs.
For the second year in a row, Amazon CEO Andy Jassy used his annual letter to shareholders to stress the contribution of generative AI applications to Amazon's continuing success. He reported that 'there are more than 1,000 GenAI applications being built across Amazon, aiming to meaningfully change customer experiences in shopping, coding, personal assistants, streaming video and music, advertising, healthcare, reading, and home devices, to name a few.'
Jassy also highlighted the importance of generative AI to the future of all enterprises: 'If your customer experiences aren't planning to leverage these intelligent models… and their future agentic capabilities, you will not be competitive.'
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
an hour ago
- Yahoo
Broadcom's AI Bonanza Has Limits
Broadcom is making a lot of money by helping tech companies manufacture custom chips that speed up artificial-intelligence computations. Broadcom's stock is the fifth-best-performing in the S&P 500 over the past two months, rising more than 70% over the period—a stunning rise given the company's already large size. Years ago, Broadcom began helping Google make AI chips, an interesting but not wildly profitable side hustle at the time.
Yahoo
an hour ago
- Yahoo
Alphabet to Expand Engineering Ranks Through 2026
Alphabet (NASDAQ:GOOG) CEO Sundar Pichai vows to keep hiring engineers into 2026 as AI investments ramp, saying human talent remains crucial amid Google's $100 billion-plus AI push. Speaking at Bloomberg Tech in San Francisco, Pichai said engineering headcount will grow from current levels into next year, believing more engineers will boost productivity by automating mundane tasks. The comments come as peers retrench: Microsoft (NASDAQ:MSFT) cut hundreds of roles after its largest layoff in years, and Intel (INTC) joined the wave, with 137 tech companies shedding 62,114 jobs so far in 2025 per Though Google itself has trimmed staff in recent years, Pichai argued AI still makes fundamental coding errors, underscoring the need for engineers to oversee model development. Are we on an absolute path to AGI? I don't think anyone can say for sure, he said, highlighting uncertainties around artificial general intelligence. As Google integrates AI more deeply into Search, publishers fear traffic losses from AI-generated answers, but Pichai assured that Google will continue directing users to websites. We designed AI Overviews to prioritize high-quality outbound links, and years from now that's how Google will work, he noted. Although tech layoffs have eased, sector cuts underscore headwinds. Pichai's emphasis on engineering investment signals that Alphabet sees personnel as a moat against rivals. Meanwhile, Meta Platforms' (NASDAQ:META) CTO Andrew Bosworth said Silicon Valley is now more open to supporting U.S. military projects, referencing Meta's partnership with Anduril Industries to supply XR gear for the Army. Investors should watch whether Alphabet's engineering investments pay off as rivals cut costs, because talent retention could determine AI competitiveness. Investors will eye Alphabet's Q2 earnings and headcount data when reported next month. This article first appeared on GuruFocus. Error while retrieving data Sign in to access your portfolio Error while retrieving data Error while retrieving data Error while retrieving data Error while retrieving data
CNBC
an hour ago
- CNBC
Top Wall Street analysts believe in the potential of these stocks despite macro woes
Macro uncertainty is keeping the market volatile, but investors ought to keep their focus on stocks that can provide compelling long-term returns. Top Wall Street analysts' recommendations can help inform investors as they pick the right stocks that can weather short-term pressures with solid execution and generate impressive returns over the long term. With that in mind, here are three stocks favored by the Street's top pros, according to TipRanks, a platform that ranks analysts based on their past performance. Semiconductor giant Nvidia (NVDA) is this week's first stock pick. The company reported market-beating results for the first quarter of fiscal 2026. Despite chip export restrictions, Nvidia remains confident about the demand for its artificial intelligence infrastructure. Following the Q1 print, JPMorgan analyst Harlan Sur reiterated a buy rating on Nvidia stock with a price target of $170. The analyst noted that the company delivered solid revenue despite lost sales related to the H20 chip export restrictions on shipments to China. However, NVDA's margins and EPS were hit by the $4.5 billion write-down related to H20 inventory write-downs. Excluding H20 shipments, Sur projects that the July quarter data center revenue is growing at about 16% quarter over quarter, driven by continued robust spending by customers on their AI/accelerated compute projects and persistent strength in production and deployment ramp of Nvidia's Blackwell platform. The analyst added that the demand for Nvidia's Blackwell platform is very strong and is expected to continue to surpass supply for many quarters. Sur believes that management has good visibility for solid growth through calendar year 2026, backed by recent mega data center deals (including those with UAE, Saudi Arabia, and Taiwan) and the end of the diffusion rule. Overall, Sur concluded that Nvidia is staying ahead of competitors with its silicon, hardware and software platforms and an impressive ecosystem, "further distancing itself with its aggressive cadence of new product launches and more product segmentation over time." Sur ranks No. 38 among more than 9,600 analysts tracked by TipRanks. His ratings have been profitable 66% of the time, delivering an average return of 23.4%. See Nvidia Ownership Structure on TipRanks. We move to cybersecurity company Zscaler (ZS). The company's results for the fiscal third quarter surpassed expectations, fueled by the demand for its Zero Trust Exchange platform and the growing need for AI security. In reaction to the upbeat results, JPMorgan analyst Brian Essex reaffirmed a buy rating on Zscaler stock and boosted the price target to $292 from $275, saying, "We are encouraged by the strength in the quarter, particularly when off-calendar peers seemed to struggle with macro headwinds a bit more than expected." The analyst noted that Zscaler raised its full-year outlook for revenue, profitability and billings. He explained that the company's performance was backed by encouraging contributions from emerging products like Zero Trust Everywhere, Data Security Everywhere and Agentic Operations. In fact, these emerging products are approaching $1 billion in annual recurring revenue (ARR). Essex noted that large customer momentum continued to be solid in Q3 FY25, with the number of customers with over $1 million of ARR increasing 23% year over year, keeping Zscaler on track to exceed $3 billion of ARR in the fiscal fourth quarter. He emphasized that macro commentary was better than anticipated, as management stated that the company didn't witness a "softer April," though IT budgets remain tight. Commenting on Zscaler's Red Canary acquisition, Essex views this deal as encouraging, given that it is expected to enable the company to leverage the IP (intellectual property) and threat intel capabilities of Red Canary. Essex ranks No. 652 among more than 9,600 analysts tracked by TipRanks. His ratings have been successful 58% of the time, delivering an average return of 12.6%. See Zscaler Hedge Fund Trading Activity on TipRanks. Customer relationship management software provider Salesforce (CRM) recently reported better-than-projected revenue and earnings for the first quarter of fiscal 2026 and raised its full-year forecast. The company also announced the acquisition of data management company Informatica for $8 billion. Following the results, TD Cowen analyst Derrick Wood reiterated a buy rating on CRM stock with a price target of $375. Wood noted that the company's Q1 FY26 revenue and current remaining performance obligations surpassed expectations. "We think its renewed focus on accelerating sales capacity growth is a strong demand signal & should unlock higher growth next year," said Wood. The analyst highlighted that AI adoption is ramping for Salesforce, with Data Cloud and AI ARR rising more than 120% year over year and reflecting strong early traction for the company's Agentforce offering. Wood noted that 30% of net new Agentforce bookings came from existing customers expanding their usage. The analyst stated he is encouraged by the scale and velocity of Data Cloud, which he considers to be a leading indicator of Agentforce adoption as customers gear up to power agentic workflows. Wood contends that with margins now in the mid-30% range, Salesforce is focusing more on growth by re-deploying AI cost savings. Notably, the company is increasing its workforce more aggressively, following a flat sales headcount in the last two to three years. The analyst sees this as a signal of positive demand, with management indicating that pipelines are growing by the double-digits. Wood ranks No. 176 among more than 9,600 analysts tracked by TipRanks. His ratings have been profitable 62% of the time, delivering an average return of 14.8%. See Salesforce Technical Analysis on TipRanks.
