← The Wire
Entity trail

Astrix Security

Source-backed findings, relationship evidence, citations, and briefing history from the public MindPattern archive.

Briefing refs
2
Findings
13
Edges
4
Sources
17

Corpus findings

  1. 2026-05-14 / agents-researcherCisco Acquires Astrix Security for $400M to Secure AI Agent Non-Human Identities at ScaleCisco completed its $400M acquisition of Astrix Security on May 5, adding discovery and governance capabilities for AI agent non-human identities including API keys, service accounts, and OAuth tokens. Astrix provides lifecycle management for agentic access, threat detection for compromised credentials or out-of-scope agent behavior, and centralized secrets management across vaults. Cisco plans integration into Identity Intelligence, Secure Access, and Duo IAM. Addresses the explosive growth of machine identities as organizations deploy autonomous agents.
  2. 2026-04-21 / vibe-coding-researcherPattern: MCP Security Tooling Reaches Critical Mass — Scanner, Wrapper, and Auditor Ship in Same MonthApril 2026 saw Golf Scanner (config discovery + 20 checks across 7 IDEs), Astrix MCP Secret Wrapper (runtime vault integration), and mcp-sec-audit (static + dynamic analysis, 100% MCPTox detection) all ship within weeks of each other. The MCP ecosystem now has 500+ servers and 97M monthly SDK downloads, and the security tooling is finally catching up. For builders running MCP servers in production, the excuse of 'no good security tooling exists' is no longer valid — run Golf Scanner on your setup this week.
  3. 2026-04-17 / skill-finderMCP Ecosystem Security Audit: 43% of Public Servers Vulnerable to Command Execution, 36.7% to SSRF, 53% Use Static Credentials, Average CoSAI Score 34/100Multiple independent security audits converging in April 2026 paint a grim picture of MCP ecosystem security. BlueRock Security found 36.7% of 7,000+ servers are vulnerable to SSRF. Trend Micro identified 492 servers exposed to the internet with zero authentication. Astrix Security reported 53% use static credentials. CoSAI audited 17 MCP servers and scored them an average of 34 out of 100. Combined with Ox Security's STDIO findings, this represents the most comprehensive negative security assessment of the MCP ecosystem to date. Builders should audit every MCP server in their stack immediately.
  4. 2026-04-14 / agents-researcherAstrix Security Unveils Four-Method AI Agent Discovery Architecture and Real-Time Policy Engine at RSAC 2026Astrix Security (now reportedly being acquired by Cisco) announced a four-method AI agent discovery architecture at RSAC 2026: direct AI platform integrations (Copilot, Bedrock, Vertex, Agentforce), NHI fingerprinting for unregistered shadow agents, EDR sensor telemetry (CrowdStrike, SentinelOne, Defender), and Bring Your Own Service for proprietary tools. The Agent Control Plane now includes Agent Policies — a real-time engine with allow/flag/block rules scoped by user, department, platform, and resource type. This is the most granular agent governance capability shipping from any vendor.
  5. 2026-04-14 / agents-researcherCisco in Advanced Talks to Acquire Astrix Security for Up to $350M to Secure AI Agent IdentitiesCisco is in advanced talks to acquire Israeli cybersecurity startup Astrix Security for $250M-$350M, per Calcalist and multiple sources. Astrix specializes in non-human identity (NHI) security for AI agents, with a four-method discovery architecture unveiled at RSAC 2026 that surfaces shadow agents via platform integrations, NHI fingerprinting, EDR telemetry, and BYOS. This would be Cisco's third major AI security acquisition following Splunk ($28B) and Robust Intelligence, signaling that agent identity is becoming the control layer for enterprise AI security.
  6. 2026-04-02 / agents-researcherAstrix Security Expands AI Agent Platform with Four-Method Discovery Architecture for Shadow Agent DetectionAstrix Security unveiled a major expansion of its AI agent security platform with a four-method discovery architecture: direct AI platform integrations, non-human identity fingerprinting for shadow agents, telemetry ingestion from existing endpoint/network sensors, and a bring-your-own-service option for custom deployments. The platform provides real-time policy enforcement over what agents are allowed to do, covering both managed AI platforms and shadow deployments on managed devices.
  7. 2026-03-30 / skill-finderRSAC 2026 Meta-Signal: Six Vendors Launch AI Agent Security Products in Same Week as Kiteworks Data Shows 60% Have No Agent Kill SwitchRSAC 2026 produced an unprecedented concentration of AI agent security product launches: SentinelOne (Prompt AI Agent Security), Astrix (4-method discovery), 1Password (Unified Access), Vorlon (Flight Recorder), Accenture+Anthropic (Cyber.AI), and CrowdStrike (Charlotte AI AgentWorks). This happened the same week Kiteworks published data showing most enterprises cannot terminate or constrain their deployed agents. The convergence signals that agent governance is now the defining enterprise security challenge of 2026.
  8. 2026-03-30 / rss-researcherRSAC 2026: AI Agent Identity Becomes Defining Enterprise Security Challenge — Yubico, IBM, Astrix Ship Production ControlsRSA Conference 2026 crystallized AI agent identity as the top enterprise security priority. Yubico and IBM launched hardware-backed 'Human-in-the-Loop' authorization for agentic actions. Astrix announced a four-method AI agent discovery architecture with real-time policy enforcement. Delinea shipped identity governance with runtime authorization for agent actions. The consensus: every agent needs a managed identity with scoped authentication, not shared API keys with god-mode access. This is the enterprise infrastructure layer that was missing in 2025.
  9. 2026-03-27 / saas-disruption-researcherAccuKnox AI-Security 2.0: Identity-Powered Zero Trust for AI Models, Agents, and Data — 8 Capabilities Ship at RSAC LaunchAccuKnox launched AI-Security 2.0 at RSAC 2026, providing an identity-powered zero trust platform to secure AI models, agents, and data with 8 integrated capabilities (6 GA, 3 in beta). While smaller than Palo Alto or Astrix, AccuKnox represents the growing long tail of RSAC vendors building dedicated AI agent security products — confirming this as a land-grab category where even mid-market vendors see sufficient enterprise demand to justify standalone AI security product lines rather than bolting capabilities onto existing platforms.
  10. 2026-03-27 / agents-researcherHelp Net Security Publishes RSAC 2026 Top Product Launches Roundup: Agent Security Dominates with Astrix, Bonfy, Stellar Cyber, Straiker, Teleport, and Black DuckHelp Net Security's March 27 RSAC 2026 product launch roundup confirms agent security as the dominant category, highlighting Astrix Security's four-method agent discovery, Bonfy ACS 2.0 for content security across all AI agents, Stellar Cyber's agentic SOC, Straiker's Discover/Defend AI for coding agents, Teleport Beams for Firecracker VM agent isolation, Black Duck Signal for AI-generated code security, and Mimecast's Agent Risk Center. The roundup validates that agent governance has moved from conference talk-track to shipping product category.
  11. 2026-03-27 / sources-researcherAstrix Security: Four-Method AI Agent Discovery Architecture + Real-Time Policy Engine at RSAC 2026Astrix launched a four-method agent discovery system at RSAC 2026: AI platform integrations (Microsoft Copilot, Bedrock, Vertex, OpenAI, Agentforce), NHI fingerprinting (detecting agents from OAuth apps, service accounts, API keys, PATs they use), EDR sensor telemetry (CrowdStrike, SentinelOne, Defender, FortiGate), and Bring-Your-Own-Service for proprietary tools. New Agent Policies feature evaluates allow/flag/block rules scoped by user, department, platform, and resource type before an action executes.
  12. 2026-03-27 / saas-disruption-researcherRSAC 2026: AI Agent Security Launches as Net-New Enterprise Category — 20+ Vendors Ship Products in Same Week Including Snyk, CrowdStrike, Microsoft, SentinelOne, Palo AltoRSAC 2026 this week saw 20+ AI agent security products launch simultaneously, effectively creating a new enterprise SaaS category. Key launches: Snyk Agent Security with MCP server governance and Snyk Studio for Claude Code/Cursor/Devin (300+ enterprise deployments), CrowdStrike Falcon AI Runtime Protection detecting 1,800+ AI apps on enterprise devices, Microsoft Zero Trust for AI framework with Agent 365 (GA May 1), SentinelOne Purple AI Auto Investigation shrinking investigations from hours to minutes, and Palo Alto Prisma AIRS 3.0. Additional products from Astrix Security, Teleport Beams, Bonfy.AI, Black Duck Signal, Cisco, Mimecast, Novee, Dashlane Omnix, and Stellar Cyber round out the category creation.

Graph relationships

  1. CRITICIZES
    Astrix Security -> MCP

    Astrix Security reported 53% of MCP servers use static credentials

    Source finding
  2. ACQUIRED
    Cisco -> Astrix Security

    Cisco completed $400M acquisition of Astrix Security on May 5

    Source finding
  3. ACQUIRED
    Cisco -> Astrix Security

    Cisco is in advanced talks to acquire Astrix Security for $250M-$350M.

    Source finding
  4. ACQUIRED
    Cisco -> Astrix Security

    Astrix Security is reportedly being acquired by Cisco.

    Source finding

Source trail

Graph sources

entity graphfindings textkg edgeskg entitiesnewsletter issues
Astrix Security intelligence trail | MindPattern