Agent Identity

Anthropic now verifies you, but does anyone verify your agent?

Anthropic's new ID and biometric verification requirement checks the human at the keyboard. It does nothing for the AI agent acting on that human's behalf, and that's the identity gap regulated companies should be worrying about.

July 9, 2026
Agent Security

Never Run an Agent Outside Your Own Control

GitLost, a new prompt-injection flaw in GitHub Agentic Workflows, is a preview of what happens when you put the non-deterministic part of your automation outside your control boundary. Keep the reasoning in-house and let only deterministic API calls cross the line.

July 8, 2026
Agent Security

JadePuffer got in fast, but it shouldn't have been able to get anywhere.

Sysdig's report on the first fully autonomous ransomware attack is being read as a story about AI speed and creativity. The real story is what standing access let the agent reach once it was in.

July 7, 2026
Agent Security

MCP tool poisoning is an authenticity problem, not a prompt injection problem

Microsoft's research on poisoned MCP tool descriptions shows why filtering-based agent security keeps failing - and why cryptographically verifying tools, not classifying text, is the real fix.

July 4, 2026
Zero Trust

What is zero-trust security for AI agents?

Zero-trust security for AI agents means no agent action is trusted by default - every tool call, data access, and message is cryptographically verified at runtime. Here's how it works and why it matters.

March 12, 2026
Post-Quantum

Why post-quantum cryptography matters for AI agents now

Post-quantum cryptography (PQC) protects AI agent data against 'harvest now, decrypt later' attacks. Here's why regulated enterprises should encrypt the agent data layer with PQC today, not after quantum computers arrive.

March 5, 2026

See NuDay in action

Deploy autonomous agents that are compliant, observable, and provably safe.