Nik Kale
Nik Kale
Building Intelligent Systems That Operate Themselves Securely
⌘K
Subscribe Sign in
Nik Kale

Agentic Systems

An AI Agent Just Pwned Trivy, Microsoft, and DataDog in One Week
Agentic Systems

An AI Agent Just Pwned Trivy, Microsoft, and DataDog in One Week

An autonomous AI agent scanned 47,000+ repositories, identified vulnerable CI/CD configurations, and compromised projects from Microsoft, DataDog, and Aqua Security using five distinct techniques. The only target that survived was defended by another AI agent.
The npm Nightmare Just Repeated Itself in AI Agents. It’s Worse This Time.
Agentic Systems

The npm Nightmare Just Repeated Itself in AI Agents. It’s Worse This Time.

1,184 malicious skills infiltrated ClawHub, the plugin marketplace for the OpenClaw agent framework, reaching 20% of the ecosystem in weeks. Unlike npm packages, agent plugins run with full system permissions. The supply chain playbook broke because the blast radius changed.
Palo Alto’s Unit 42 Just Found a Way to Hijack AI Agent Conversations - And Your Users Can’t See It Happening
Enterprise Security

Palo Alto’s Unit 42 Just Found a Way to Hijack AI Agent Conversations - And Your Users Can’t See It Happening

In November 2025, Palo Alto Networks’ Unit 42 research team published a new attack technique they called “Agent Session Smuggling.” The attack exploits a fundamental property of multi-agent systems: agents remember their recent conversations.
What 3 AM War Rooms Taught Us About Designing Multi-Agent AI
Agentic Systems

What 3 AM War Rooms Taught Us About Designing Multi-Agent AI

We went from “trust me” AI to “show me” AI. And that distinction, it turns out, is what makes engineers willing to actually use the system instead of just running their own investigation in parallel.
36.7% of MCP Servers May Be Vulnerable to SSRF - The Supply Chain Crisis Nobody's Talking About
Enterprise Security

36.7% of MCP Servers May Be Vulnerable to SSRF - The Supply Chain Crisis Nobody's Talking About

Analysis suggests over a third of MCP servers may be vulnerable to server-side request forgery. The MCP ecosystem has a supply chain problem: rapid adoption without security review created a vulnerability surface that scales with every new deployment.
The First AI-Orchestrated Cyberattack Changed Everything We Thought We Knew About Autonomous Threats
Agentic Systems

The First AI-Orchestrated Cyberattack Changed Everything We Thought We Knew About Autonomous Threats

Anthropic disclosed the first documented case of AI autonomously orchestrating a cyberattack sequence. This isn't a theoretical risk anymore. The shift from AI-assisted to AI-orchestrated attacks changes the threat model fundamentally.
Two Critical CVEs Just Blew Open the MCP Ecosystem, And Developers Were the Target
Agentic Systems

Two Critical CVEs Just Blew Open the MCP Ecosystem, And Developers Were the Target

Two critical vulnerabilities in MCP reference implementations confirm what the security community warned about: protocol-level design gaps become exploitable at scale. The CVEs aren't edge cases. They're structural consequences of shipping without security mandates.
MCP Gets OAuth 2.1, Six Months Too Late, and Thousands of Servers Already Deployed Without It
Machine Identity

MCP Gets OAuth 2.1, Six Months Too Late, and Thousands of Servers Already Deployed Without It

MCP's OAuth 2.1 integration addresses the authentication gap, but 13,000 servers were deployed during the six months it was optional. Security debt doesn't vanish when you update a spec. It persists in every system built before the fix.
OpenAI Just Adopted MCP, And the Protocol Still Doesn’t Mandate Authentication
Agentic Systems

OpenAI Just Adopted MCP, And the Protocol Still Doesn’t Mandate Authentication

OpenAI's adoption of MCP validates the protocol's trajectory but doesn't resolve its core security gap. Authentication remains optional in the specification, and adoption at scale amplifies the risk of every unauthenticated connection.
75% of DIY Agent Architectures Will Fail, And Forrester’s Reasoning Deserves More Attention
AI in Production

75% of DIY Agent Architectures Will Fail, And Forrester’s Reasoning Deserves More Attention

Forrester estimates 75% of DIY agent architectures will fail. The prediction tracks with a structural reality: building agentic systems requires solving identity, governance, and orchestration problems that most teams underestimate until production.
The Death of the Service Account: Why Google and CoSAI Say AI Agents Need Human Identity
Machine Identity

The Death of the Service Account: Why Google and CoSAI Say AI Agents Need Human Identity

AI agents operating under shared service accounts create an accountability void. Google and CoSAI are converging on identity propagation as the answer: agents should inherit and carry human identity, not mask it behind generic credentials.
Executive Trust in AI Agents Just Collapsed: From 43% to 22% in Six Months
Autonomy & Oversight

Executive Trust in AI Agents Just Collapsed: From 43% to 22% in Six Months

Executive confidence in AI agents dropped from 43% to 22% in six months. This isn't skepticism about AI capability. It's a rational response to deployments that revealed how little infrastructure exists to make autonomous AI trustworthy.
Anthropic Just Released the ‘USB-C for AI’, And It Ships Without Authentication
Machine Identity

Anthropic Just Released the ‘USB-C for AI’, And It Ships Without Authentication

Anthropic's Model Context Protocol promises to standardize how AI connects to tools and data. The architecture is elegant. The problem: the initial specification shipped without mandatory authentication, creating a protocol-level trust gap.
Gartner Says 40% of Agentic AI Projects Will Be Cancelled, But Enterprises Are Doubling Down Anyway
Agentic Systems

Gartner Says 40% of Agentic AI Projects Will Be Cancelled, But Enterprises Are Doubling Down Anyway

Gartner predicts 40% of agentic AI projects will be cancelled or scaled back. The pattern is familiar: enterprises invest based on capability demos, then discover the infrastructure requirements after commitments are made.