Microsoft launches Agent Toolkit as Apple delays Siri upgrade

Key Takeaways

• AI agents pose significant security risks due to their autonomous, machine-speed actions and identity fragmentation challenges.
• Okta secures AI agents by treating them as primary identities, applying human user governance principles, and monitoring activity in real-time.
• Microsoft launched an open-source Agent Governance Toolkit to address all ten OWASP agentic AI risks, including goal hijacking and identity abuse.
• Critical vulnerabilities, like CVE-2026-33579 in OpenClaw, have allowed for full instance takeover and data exfiltration, exposing users to significant risk.
• Privileged Access Management (PAM) is evolving to manage dynamic, high-speed AI agent identities, shifting towards real-time authorization.
• Apple is delaying new device launches, including an Apple TV 4K and HomePod 3, pending a major AI-powered Siri upgrade expected in iOS 26.5 or iOS 27.
• Actress Hannah Einbinder criticized generative AI creators, stating AI threatens artists' livelihoods and creative processes.
• Berklee College of Music opened BEATL to explore AI in music, viewing it as a workflow enhancer and focusing on ethical implications.
• Gartner advises against cutting support staff to fund AI, emphasizing the continued need for human judgment and capacity alongside AI systems.
• AI is transforming franchise sales by enabling efficient candidate research and revolutionizing trading markets with adaptive, data-driven decision-making.

AI agents create security risks, experts warn

Experts are warning that the rapid adoption of AI agents is creating significant security risks for organizations. These autonomous systems can perform actions at machine speed, making it difficult to detect and prevent unauthorized activities. A key challenge is identity fragmentation, with many organizations lacking visibility into non-human identities, especially in AI environments. This allows attackers to exploit stolen credentials and expand the attack surface. To combat this, a machine-speed approach to identity security is needed, focusing on continuous discovery, real-time monitoring, and dynamic access controls.

Okta's strategy for securing AI agent identities

Okta's CISO for EMEA, Stephen McDermid, discusses the challenges of securing autonomous AI agents in enterprise environments. He emphasizes that organizations must embrace AI with proper governance to avoid risks. Okta treats AI agents as primary identities, applying the same governance principles as human users. This includes clear policies for agent creation, defining permissions, and managing data access. Monitoring agent activity in real-time is crucial, especially with agentic workflows where multiple agents interact. McDermid also notes regional differences in AI adoption, with Europe showing a greater focus on compliance and data sovereignty.

Four security rules for autonomous AI systems

Agentic AI systems, which use AI to plan and execute actions autonomously, present new security challenges. NIST is seeking input on how to secure these systems. While the benefits of agentic AI are significant, their autonomy and adaptability create security risks. Existing security frameworks can be adapted by applying four principles. These include securing all system components through a secure development lifecycle, applying traditional security controls, and evolving practices to address the unique nature of AI. Continuous evaluation and monitoring are essential to manage behavioral drift and potential security issues.

Privileged access is key for controlling AI agents

As organizations adopt agentic AI, they face challenges with identity and access models not designed for autonomous systems. AI agents can execute multi-step actions across infrastructure with minimal human oversight, often requiring privileged access. This is transforming Privileged Access Management (PAM) from a compliance tool to a foundational control layer. The rise of machine and agentic AI identities, which can act at machine speed, necessitates a shift from credential vaulting to real-time authorization. Governance models must evolve to manage these dynamic, high-speed actors.

AI use may reduce creativity and understanding

While AI increases efficiency, it may also lead to a loss of creativity and deep understanding. Studies show that relying too heavily on AI for conceptual questions can hinder learning, as the struggle of not knowing is crucial for true understanding. AI can also make people more creative by converging towards the norm, reducing the diversity of ideas. Furthermore, AI can cause feelings of unease, loss of control, and mental fatigue. The article suggests that while AI offers benefits, it's important to consider what is being traded away.

Apple's new devices await AI Siri upgrade

Apple is reportedly holding back the launch of four new devices, including a new Apple TV 4K, HomePod 3, HomePod mini 2, and a smart display called HomePod Touch. These devices are ready but are waiting for a significant AI-powered Siri upgrade. The upgrade has faced delays, with features now expected in iOS 26.5 or iOS 27. The new Siri is expected to enhance the functionality of these upcoming products, making them more intelligent and conversational. The delay in Siri's rollout is impacting Apple's product launch timeline.

Hannah Einbinder calls AI creators 'losers'

Actress Hannah Einbinder has strongly criticized creators of generative AI, calling them 'losers' who are trying to steal from real artists. She expressed frustration that these creators will never be cool and are driven by power and access. Co-creator Jen Statsky agreed, stating that AI is making the creative process easier for executives but harmful to creatives and their livelihoods. They emphasized the need for guardrails to protect human art and jobs. The comments come as the fifth season of their show 'Hacks' is set to premiere.

Berklee lab explores AI's role in music creation

Berklee College of Music has opened a new lab, BEATL, to help students explore artificial intelligence in music. The lab prepares students for a rapidly evolving industry where AI is changing how music is written, produced, and refined. Students are experimenting with AI tools like Suno to compose and produce music, viewing AI as a workflow enhancer rather than a replacement for human creativity. The lab also focuses on the ethical implications of AI in music, with a planned AI Music Summit to discuss these issues.

Gartner: Don't cut support staff for AI savings

Gartner warns that while technology spending, especially on AI, is expected to double by 2028, companies should not cut support teams to fund these initiatives. Many organizations underestimate the ongoing need for skilled employees alongside AI. Instead of replacing departments, companies should realign their workforce for higher-value activities. AI can automate routine tasks, but human judgment, context, and flexibility are still crucial for complex customer service issues. Cutting staff too quickly can reduce internal capacity for training, monitoring, and correcting AI systems, leading to service gaps and increased costs.

AI transforms franchise sales and discovery

Artificial intelligence is revolutionizing the franchise sales and discovery process, acting like a new franchise broker. AI tools are changing how potential franchisees research, compare, and choose brands before even speaking with a salesperson. This shift allows candidates to gather information and make initial decisions more efficiently. The integration of AI is reshaping the initial stages of the franchise acquisition journey.

Microsoft releases open-source AI agent security toolkit

Microsoft has launched a new open-source project, the Agent Governance Toolkit, to address security risks in agentic AI. This toolkit is designed to tackle all ten agentic AI risks identified by OWASP, including goal hijacking and identity abuse. Available for multiple programming languages, it includes components like Agent OS for policy enforcement and Agent Mesh for secure communication. Microsoft emphasizes its open-source nature under the MIT license, providing a framework for securing AI agents.

AI agents are revolutionizing trading markets

AI agents are transforming trading by moving beyond static rules to adaptive systems that can analyze vast amounts of data and make informed decisions. Agentic AI involves multiple systems working together to handle tasks like data finding and testing ideas, making research more structured. While AI offers benefits like increased efficiency and democratization of trading tools, risks such as overfitting and improper data handling exist. The future of trading appears to be a hybrid model, combining human intuition with the scale and speed of machine learning.

OpenClaw security flaws expose users to risk

Security experts are warning about the risks associated with the viral AI agent tool OpenClaw, especially after critical vulnerabilities were recently patched. One vulnerability, CVE-2026-33579, allowed for full instance takeover, enabling attackers to access data, exfiltrate credentials, and pivot to other services. Thousands of instances may have been compromised without users knowing. Many OpenClaw instances were found exposed online without authentication, making them easy targets. Users are advised to assume compromise and reconsider using the tool.

Sources

• Speed over security: The identity crisis in the age of agentic AI
• Securing AI agents: Okta's approach to identity governance
• Four security principles for agentic AI systems
• Why Privileged Access is Becoming the Control Plane for Agentic AI
• What We Lose with AI
• Apple has 4 devices in pipeline waiting for AI Siri upgrade: What to expect
• Hannah Einbinder Slams AI Creators As "Losers"
• Berklee lab lets students explore AI in music as industry evolves
• Gartner Warns Enterprises Against Cutting Support Teams to Fund AI
• How AI Is Changing Franchise Sales and Discovery
• Microsoft's Newest Open-Source Project: Runtime Security For AI Agents
• The Future of Trading: How AI Agents Are Revolutionizing Markets
• OpenClaw gives users yet another reason to be freaked out about security