TechTarget and Informa Tech’s Digital Business Combine. TechTarget and Informa TechTarget and Informa Tech’s Digital Business Combine. Together, we power an unparalleled network of 220+ online properties covering 10,000+ granular topics, serving an audience of 50+ million professionals with original, objective content from trusted sources. We help you gain critical insights and make more informed decisions across your business priorities. Dark Reading Resource Library Black Hat News Omdia Cybersecurity Advertise Newsletter Sign-Up Newsletter Sign-Up Cybersecurity Topics Related Topics Application Security Cybersecurity Careers Cloud Security Cyber Risk Cyberattacks & Data Breaches Cybersecurity Analytics Cybersecurity Operations Data Privacy Endpoint Security ICS/OT Security Identity & Access Mgmt Security Insider Threats IoT Mobile Security Perimeter Physical Security Remote Workforce Threat Intelligence Vulnerabilities & Threats Recent in Cybersecurity Topics Application Security Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit Checkmarx KICS Code Scanner Targeted in Widening Supply Chain Hit by Jai Vijayan Mar 24, 2026 5 Min Read Application Security How AI Coding Tools Crushed the Endpoint Security Fortress How AI Coding Tools Crushed the Endpoint Security Fortress by Rob Wright Mar 24, 2026 5 Min Read World Related Topics DR Global Middle East & Africa Asia Pacific Latin America Recent in World See All Application Security Real-Time Banking Trojan Strikes Brazil's Pix Users Real-Time Banking Trojan Strikes Brazil's Pix Users by Alexander Culafi Mar 13, 2026 4 Min Read Threat Intelligence Iran's Cyber-Kinetic War Doctrine Takes Shape Iran's Cyber-Kinetic War Doctrine Takes Shape by Alexander Culafi Mar 6, 2026 4 Min Read The Edge DR Technology Events Related Topics Upcoming Events Podcasts Webinars SEE ALL Resources Related Topics Resource Library Newsletters Podcasts Reports Videos Webinars White Papers Partner Perspectives Dark Reading Resource Library Cybersecurity Operations News, news analysis, and commentary on the latest trends in cybersecurity technology. AI-Native Security Is a Must to Counter AI-Based Attacks Attacks by artificial intelligence agents are a reality. Experts at Nvidia's GTC conference say defenders need to use the same tools to fight them off. Agam Shah , Contributing Writer March 25, 2026 3 Min Read Source: Sleepyellow via Alamy Stock Photo Slow human-controlled defenses won't be enough for autonomous agents spun off by technologies like OpenClaw, say experts. Artificial intelligence-native security will be needed to fend off threats. "You're going to see an AI-led attack, full agentic attacks that we're starting to see already today. The only way to deal with those is a full agentic defense," Francis deSouza, Google Cloud's chief operating officer and president of security products, said during a panel discussion at Nvidia’s GTC conference earlier this month. During the discussion, panelists noted that AI-native security models prevent rogue agent break-ins. Such models include agents that spot security weaknesses and scan sub-agents before deployment, control dynamic system access for agents, and generate audit trails to track agent identity and activity. At GTC, Nvidia CEO Jensen Huang highlighted OpenClaw's ability to create agents that can scan file systems, access personal information and communicate with large-language models. Those autonomous functions have been a source of security concerns . Related: AI Dominates RSAC Innovation Sandbox Panelists said that OpenClaw could create a new attack surface in which AI agents can run for weeks and months, and activate after a long slumber. For example, agents could scout for weaknesses in SharePoint systems, stay idle, and activate attacks at specific times. Tackling agentic threats on abandoned or insecure assets isn't humanly possible, and only AI-driven security models – operating at what panelists called “machine speed” – can battle rogue agents, said Google’s deSouza. Nvidia introduced a fork of OpenClaw called NemoClaw, which is designed to address such concerns. It enforces privacy and security guardrails over how agents handle data. Agentic Security Cuts Both Ways Free-roaming agents can be a boon and a liability. They can find and close security gaps, but also exploit vulnerabilities. "It was fine because you had security by obscurity. Nobody could find them and it didn't really matter," deSouza said. “But now, as you have agents roaming your environment, they will find them and they will expose them.” DeSouza recommended creating an AI-native dynamic access control system to check access for autonomous agents. Agents must not inherit the identities of human users as permissions may change in real-time as an agent traverses the workflow, he says. "We really need to think about what it means natively to create this infrastructure for agents itself," deSouza said. The technology stack needs to evolve to include data typically not included in agents, such as a knowledge graph or a context graph with information about why a decision was made, says Amit Zavery, chief product and operating officer at ServiceNow . Related: ServiceNow Buys Armis for $7.75B, Boosts 'AI Control Tower' ServiceNow has built an AI security system called AI Control Tower, which uses an Access Graph to analyze tasks and identities to determine system access for agents. It works alongside Knowledge Graph – a layer which maps agents to data inside and outside ServiceNow – to build full context around a task, the data involved, and the identity requesting access. AI Control Tower also provides real-time agent visibility and maintains audit logs of autonomous agents. A trust layer determines when human intervention is required before an agent can access data. OpenClaw is a good reason to rethink security, but most considerations – such as depth of defense, standing privileges, monitoring of execution, and activity – should remain the same, said Elia Zaitsev, chief technology officer at CrowdStrike. "The basic hygiene of security shouldn't change just because you have a different sort of intelligence driving the joystick," Zaitsev said. The considerations for AI agents should also include identity – on whose behalf the agent is acting – and the scope of what agents are allowed to do, said Anirvan Mukherjee, head of AI and machine learning at Palantir. Someone has Related: Enterprises Gear Up Ahead of 2026's IT Transformation Shift But OpenClaw is unique in that it can spin out sub-agents writing their own code. The development layer will ultimately be the first line of defense, not the last, panelists said. "That code will have to go through a software development lifecycle to make sure that it's secure before it's ever deployed," Google's deSouza said. About the Author Agam Shah Contributing Writer Agam Shah has covered enterprise IT for more than a decade. Outside of machine learning, hardware, and chips, he's also interested in martial arts and Russia. See more from Agam Shah Want more Dark Reading stories in your Google search results? Add Us Now More Insights Industry Reports Frost Radar™: Non-human Identity Solutions 2026 CISO AI Risk Report Cybersecurity Forecast 2026 The ROI of AI in Security ThreatLabz 2025 Ransomware Report Access More Research Webinars Building a Robust SOC in a Post-AI World Retail Security: Protecting Customer Data and Payment Systems Rethinking SSE: When Unified SASE Delivers the Flexibility Enterprises Need Securing Remote and Hybrid Work Forecast: Beyond the VPN AI-Powered Threat Detection: Beyond Traditional Security Models More Webinars Latest Articles in DR Technology Threat Intelligence How a Large Bank Uses AI Digital Twins for Threat Hunting Mar 24, 2026 | 3 Min Read Identity & Access Management Security Microsoft Proposes Better Identity, Guardrails for AI Agents Mar 24, 2026 | 4 Min Read Cybersecurity Operations AI Dominates RSAC Innovation Sandbox Mar 22, 2026 | 6 Min Read Сloud Security Native Launches With Security Control Plane for Multicloud Mar 19, 2026 | 2 Min Read Read More DR Technology Want more Dark Reading stories in your Google search results? Discover More Black Hat Omdia Working With Us About Us Advertise Reprints Join Us Newsletter Sign-Up Follow Us Copyright © 2026 TechTarget, Inc. d/b/a Informa TechTarget. This website is owned and operated by Informa TechTarget, part of a global network that informs, influences and connects the world’s technology buyers and sellers. All copyright resides with them. Informa PLC’s registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. TechTarget, Inc.’s registered office is 275 Grove St. Newton, MA 02466. Home | Cookie Policy | Privacy | Terms of Use