Capsule Security, an AI agent runtime security company, has launched from stealth after closing a $7m seed funding round led by Lama Partners, with participation from Forgepoint Capital International.
The round supports Capsule’s mission to close what it describes as the most vulnerable and unpredictable gap in the enterprise AI stack: the moment AI agents are actively executing tasks. The company’s platform is designed to prevent agents from being manipulated, behaving unexpectedly, or leaking sensitive data silently as they carry out workflows and access confidential business systems.
Alongside its funding announcement, Capsule has published two research reports disclosing zero-day vulnerabilities it uncovered in prominent enterprise AI platforms. The first, dubbed ShareLeak, is a critical-severity indirect prompt injection flaw in Microsoft Copilot Studio — now patched and assigned CVE-2026-21520.
The second, PipeLeak, is a separate prompt injection vulnerability found in Salesforce Agentforce that can be triggered through untrusted lead-form inputs, influencing agent behaviour and pushing downstream actions that may be unsafe. Capsule says these findings demonstrate how malicious content can seize control of agent goals and redirect tool usage, turning ordinary automated workflows into significant security risks.
To address risks in open agent frameworks, Capsule has also developed ClawGuard, an open-source enforcement tool for the OpenClaw framework that introduces a pre-invocation checkpoint before agents carry out any tool calls, turning each invocation into a controlled decision point.
Prior to its public launch, Capsule was named one of six finalists in the CrowdStrike, Amazon Web Services and NVIDIA Startup Accelerator at the RSA Conference, emerging from a field of nearly 1,000 competing startups to pitch its technology to a panel that included celebrity investor and Shark Tank executive producer Robert Herjavec.
Capsule operates as a runtime-first trust layer for agentic AI, built specifically to address the gap between what enterprise security teams can govern and what AI agents are capable of doing in live production environments. Its platform enforces controls directly within the agent execution path, providing real-time visibility over agent behaviour and ensuring teams retain oversight of what agents can access and act upon. The company is advised by a group of senior security figures, including Chris Krebs, the first director of the Cybersecurity and Infrastructure Security Agency (CISA); Omer Grossman, former global CIO at CyberArk; Jim Routh, former CISO across multiple Fortune 500 enterprises; and Dr. Yonesy Núñez, a former CISO with a background in financial services.
The company’s launch comes against the backdrop of rapid AI agent adoption across large organisations. Microsoft has reported that more than 80% of Fortune 500 companies now use active AI agents built with low-code or no-code tools, while the expansion of coding agents is accelerating the pace and scale of enterprise automation.
Capsule Security CEO and co-founder Naor Paz said, “AI agents are quickly becoming a new class of privileged user in the enterprise, except they can act at machine speed and they do not behave like deterministic software. That creates a dangerous gap between what security teams can govern today and what agents can do in production. Capsule closes that gap by enforcing trust at runtime, inside the execution path, so teams can move fast with agents while staying in control of what those agents can access and execute.”
Capsule advisor Omer Grossman said, “The agentic AI boom is creating an opening in runtime behavior enterprises can’t afford to ignore. The ability to secure this layer is what ultimately determines whether companies can move fast with AI without breaking trust. That is why I chose to support Capsule Security. The team is addressing the problem at its core by delivering real-time visibility and control over agent behavior, grounded in the operational reality of AI-driven environments within a fundamentally new and rapidly evolving paradigm.”
Lama Partners founding general partner and Capsule Security board member Ron Zalkind said, “Agents have the ‘superpower’ to write and deploy code at unprecedented rates, fundamentally changing how software is built and operated. With that level of power comes a new responsibility to secure it. Security leaders understand that legacy tools were never designed to interpret intent, context, and real-time behavior, which are essential for securing dynamic agentic environments. From day one, Naor and Lidan have combined deep technical rigor with clarity of vision to build a platform that allows organizations to confidently adopt AI agents while stopping dangerous actions before damage is done.”
Elsewhere, Cogent Security, a cybersecurity company building autonomous AI agents for enterprise vulnerability remediation, recently raised new capital totalling $42m.
Copyright © 2026 FinTech Global
Copyright © 2018 RegTech Analyst
