Palo Alto Networks Acquires Koi to Enhance Agentic Endpoint Security Capabilities
Palo Alto Networks to Acquire Koi, Bolstering Endpoint Security for AI-Driven Environments
In a move to enhance its security offerings for modern, AI-native ecosystems, Palo Alto Networks has announced its intention to acquire Koi. This acquisition is expected to equip enterprises with the necessary tools to detect and protect against threats in environments where artificial intelligence (AI) agents and tools play a critical role.
Traditional Security Measures Fall Short
Traditional security measures were designed to combat malicious files, but the increasing presence of AI agents and tools has introduced a new dynamic. These agents can read, write, and move data, creating an expanded attack surface that traditional security controls often fail to address. Attackers are exploiting this vulnerability by chaining exploits within agent frameworks, bypassing authentication, and executing remote code via APIs. Furthermore, they are spoofing agent identities and hijacking credentials to weaponize trusted automation.
The Evolving Endpoint Attack Surface
The endpoint attack surface is evolving, with extensions, plugins, packages, scripts, and model artifacts contributing to endpoint behavior outside of centralized oversight. AI agents are accelerating and operationalizing this shift, increasing risk at an unprecedented pace. This has created a critical blind spot in traditional security approaches, necessitating a new category of protection: Agentic Endpoint Security.
Integration with Palo Alto Networks’ Prisma AIRS
Upon completion of the acquisition, Koi’s Agentic Endpoint Security will be integrated into Palo Alto Networks’ Prisma AIRS, its AI security platform. This integration will extend coverage across critical AI-driven operations and enhance Cortex XDR’s endpoint security solution, providing visibility into the AI attack surface to improve security policy and malware protection.
Closing the Gap in Endpoint Security
AI agents and tools have become the ultimate insiders, possessing full access to systems and data while operating outside the purview of traditional security controls. By acquiring Koi, Palo Alto Networks aims to close this gap and establish a new standard for endpoint security. The company plans to provide customers with the visibility and control necessary to safely harness the power of AI, ensuring that all agents, plugins, and scripts are governed, verified, and secure.
“We founded Koi to secure the next frontier of risk,” said Amit Assaraf, CEO of Koi. “In an agentic-first world, traditional solutions are blind. Joining forces with Palo Alto Networks will enable us to scale our technology to the world’s largest organizations, delivering protection that makes work on the modern AI-native endpoint secure by design.”
Lee Klarich, Chief Product Technology Officer at Palo Alto Networks, added, “By acquiring Koi, we will be closing this gap and setting a new standard for endpoint security. We will give our customers the visibility and control required to safely harness the power of AI—ensuring that every agent, plugin, and script is governed, verified, and secure.”
About Author
English