Palo Alto Networks has announced its intent to acquire Koi, an emerging security firm focused on Agentic Endpoint Security.
Koi, founded to address the risks posed by AI-powered agents operating on enterprise systems, develops technology designed to secure what it describes as the “Agentic Endpoint” — the expanding AI-native attack surface across modern workplaces.
The acquisition is aimed at closing what Palo Alto Networks sees as a critical gap in enterprise security as artificial intelligence reshapes workforce productivity. AI agents and tools are increasingly embedded across endpoints with deep access to data and permissions, yet often operate outside traditional monitoring frameworks. Financial terms of the deal were not disclosed in the announcement.
The move comes as organisations grapple with a rapidly shifting threat landscape. Traditional endpoint security has historically focused on malicious files and executables. However, AI-driven agents can read, write and transfer data autonomously, often leveraging APIs and automated workflows. According to Palo Alto Networks, attackers are chaining exploits within agent frameworks, bypassing authentication controls and exploiting remote code execution vulnerabilities while impersonating trusted automation tools. At the same time, extensions, plugins, scripts and model artefacts are reshaping endpoint behaviour beyond centralised oversight, increasing complexity and risk.
Following completion of the acquisition, Koi’s Agentic Endpoint Security capabilities will be integrated into Palo Alto Networks’ Prisma AIRS™, its AI security platform. The company said this will expand protection across AI-driven operations and extend visibility into AI-native environments. In parallel, the integration is expected to enhance Cortex XDR®, Palo Alto Networks’ endpoint security solution, by improving insight into the evolving AI attack surface and strengthening policy enforcement and malware prevention.
By embedding Koi’s technology within its broader platform stack, Palo Alto Networks aims to provide enterprises with improved visibility and control over AI agents, plugins and scripts operating across endpoints. The company said this will allow customers to deploy agentic tools with greater confidence, ensuring governance and verification mechanisms are in place as AI adoption accelerates.
Lee Klarich, Chief Product & Technology Officer, at Palo Alto Networks said, “AI agents and tools are the ultimate insiders. They have full access to your systems and data, but operate entirely outside the view of traditional security controls. By acquiring Koi, we will be closing this gap and setting a new standard for endpoint security. We will give our customers the visibility and control required to safely harness the power of AI—ensuring that every agent, plugin, and script is governed, verified, and secure.”
Amit Assaraf, CEO and Co-Founder of Koi said, “We founded Koi to secure the next frontier of risk. In an agentic-first world, traditional solutions are blind. Joining forces with Palo Alto Networks will allow us to scale our technology to the world’s largest organizations, delivering protection that makes work on the modern AI-native endpoint secure by design.”
Keep up with all the latest RegTech news here
Copyright © 2026 RegTech Analyst
Copyright © 2018 RegTech Analyst
