Noma Security

Sasi Levi and the Noma Security research team uncovered a critical agentic AI vulnerability affecting Salesforce Agentforce. Named ForcedLeak, this vulnerability demonstrates how attackers can extract sensitive CRM data using several, chained AI agent attack vectors. Register for this "ask me anything" session on Thursday, Oct. 30 and hear from the team that discovered ForcedLeak, learn about the methodology used to discover the agentic vulnerability, and ask them anything. If you can't attend the live session, register anyway and ask your questions in the comments below or in the AMA registration form. We'll answer your questions on the session and send you a link to the session recording.

🤔You have questions about AI model risk, the RiskRubric team has answers.🙋♀️ Here's a good one asked by a Hugging Face community member, "Curious, do you see RiskRubric evolving into something that could be integrated into CI/CD pipelines for real-time scoring during development?" Ask Caleb Sima and Gal Moyal all of your AI model risk questions, including questions about the methodology used to design RiskRubric AI in this AMA next week (details and registration provided below). If you have questions but can't attend, ask away in the comments below and we'll address them in the live AMA session. Register for the event even if you can't attend and we'll send the on-demand recording.

🏆 Proud to announce Noma Security, the comprehensive agentic AI security platform, has been named a 2025 #SINET16 Innovator Award winner! 🏆 Out of 193 applications, Noma Security was selected by a panel of 112 leading CISOs, risk executives, and cybersecurity experts as one of the 16 most innovative security technologies addressing modern threats. AI risk is proliferating as enterprise adoption of AI and agents accelerates. Cybersecurity organizations need actionable solutions to stay steps ahead. This is exactly why Noma Security was recognized by SINET as the uniquely differentiated, comprehensive platform for unified AI and agent security and governance. Our Fortune 500 customers confidently unlock the full potential of #AI without compromising on safety, security or compliance. Thank you to Heather Rodriguez and Robert Rodriguez of SINET for the opportunity, and to the entire judging committee for recognizing the importance of comprehensive AI security. And a huge thank you to our customers and partners who trust us to help create confidence in agentic AI. Let's go! 🚀

CISOs: Your board is asking about agentic AI. Your developers are already experimenting. Do you have the security frameworks in place to govern it? The timeline is aggressive; 53% of organizations plan agentic AI deployment by 2026, with 83% following by 2028. As Gartner's evolution framework shows, we're moving rapidly from simple AI assistants to collaborative AI agent ecosystems. Each step up this ladder increases both automation and complexity, and traditional security approaches break down somewhere between "simple agents" and "collaborative agents." Most CISOs are still securing the bottom of the pyramid while their organizations are already planning for the top. This is exactly why Evolution led Noma Security's $100M Series B—the fastest-growing company in AI security. As they put it: "This investment comes at a critical time for enterprise CISOs as they race to secure and govern agentic AI ahead of enterprise adoption." Organizations that secure agentic AI frameworks now will have competitive advantages. Those that don't will face compliance gaps, security incidents, and board-level questions they can't answer. Noma gives CISOs the tools to lead rather than react. 𝘋𝘢𝘵𝘢 𝘴𝘰𝘶𝘳𝘤𝘦𝘴: 𝘎𝘢𝘳𝘵𝘯𝘦𝘳 𝘐𝘛 𝘢𝘯𝘥 𝘜𝘉𝘚 𝘙𝘦𝘴𝘦𝘢𝘳𝘤𝘩 🔔 Follow Evolution Equity Partners, the $1Bn cybersecurity fund investing in companies that protect what matters most.

Thank you SINET for recognizing our portfolio companies Noma Security and Oligo Security by selecting them as winners of the 2025 #sinet16 awards! While many talk about backing repeat entrepreneurs, at Ballistic Ventures, we're incredibly excited to deeply partner with the most ambitious first time founders that are working to solve the biggest problems in #cybersecurity like Niv Braun and Alon Tron of Noma and Nadav Czerninski, Gal Elbaz and Avshalom Hilu of Oligo. And what a great annual event from Robert Rodriguez, Heather Rodriguez, Lauren Rodriguez and the entire Sinet team!

👀 OpenAI just opened agent-building capabilities to every one of your employees with ChatGPT access, dramatically increasing the AI attack surface. 👀 OpenAI AgentKit flow agents typically operate with broad permissions across multiple systems. When combined with common misconfigurations the blast radius becomes massive: ‼️ Missing approval gates for destructive operations ‼️ Un-sanitized data flows to external MCP servers ‼️ Prompt injection vulnerabilities in workflow logic ‼️ Data access patterns that bypass user permissions AI agents configured and deployed by business users using NCLC platforms can expose attack vectors associated with business critical functions such as expense approval logic, customer support workflows, and data access policies, circumventing traditional application or data security guardrails. The question isn't whether agent sprawl is coming. It's whether you'll have visibility and control when it does. Our latest blog post from Gal Moyal breaks down the hidden attack surfaces of OpenAI AgentKit, with proven and realistic recommendations for embedded agent security. Get the link in the top comment below.

John B. Dickson, CISSP, Bytewhisper Security CEO, sits down with Diana Kelley, Noma Security CISO, to discuss the need for thoughtful enterprise AI security to stay ahead of AI developers and adopters who are already going, "a million miles per hour." Watch a segment of the interview here, or watch the full interview by clicking on the first link in the comments.

🚨 ChatGPT Apps just expanded the AI attack surface again according to analysis by Gal Moyal and the Noma Security CTO office. 🚨 The OpenAI ChatGPT Apps capability opens broad access to the power of agentic AI for any user of conversational AI. No technical barriers, no approval gates. Just type, "Canva, turn this into a presentation," and it does the work. Super convenient and powerful, but easy adoption × unlimited variety × remote endpoints = exponentially compounded and potentially destructive risk. Read Gal's full analysis on why the security model for conversational AI, SaaS and application security needs to fundamentally change, and get a sneak peek at the implications for enterprise teams when the ChatGPT Apps marketplace launches later this year. A link to the post is available in the first comment below. Comment to let us know from a cybersecurity perspective, what is the last application you'd want to see show up in the ChatGPT Apps Marketplace?

📣 Big news! Noma Security has been named a Cool Vendor in the 2025 Gartner® Cool Vendors in AI Security report. 📣 The report states, “The rapid evolution of AI applications into AI agents is extending the scope of AI security technologies, which require companies to quickly adapt their existing products to agentic use cases. Through 2029, over 50% of successful cybersecurity attacks against AI agents will exploit access control issues, using direct or indirect prompt injection as an attack vector." Which is exactly why we built the comprehensive platform for AI and agent security. Fortune 500 organizations require robust visibility and controls including AI discovery and posture management, automated red teaming and active runtime protection to create confidence in their AI and agent deployments. We are committed to supporting our partners in cybersecurity by staying ahead of incredibly fast-moving AI innovation so Fortune 500 teams can safely harness the power of all types of AI at every stage of adoption. Learn more: https://lnkd.in/e6T3Aqgq

I’m happy to announce that Noma Security can now be embedded natively within Microsoft Copilot Studio Agents to provide native in-line runtime protection! We've integrated Noma Security agentic runtime guardrails directly into Copilot Studio to deliver safe agents with comprehensive security built in from day one. Joint Microsoft Copilot Studio and Noma Security customers can use the full Noma Security platform, including AI visibility, posture management, and runtime protection. Together, we're tapping the full power of agentic AI and eliminating security risks like destructive tool calling and malicious requests. The full story is in the comment below.