At CrowdStrike Fal.Con 2025, Salt Security announced the industry’s first solution to secure the actions AI agents take in the enterprise. As large organisations adopt agentic AI, agents are increasingly making real-time API calls through protocols like MCP and A2A, creating a new layer of risk. Salt is the first to converge API and AI security, giving organisations visibility into every agent-driven action, governance to enforce the right posture, and real-time protection against AI agent abuse.
This release gives security teams immediate visibility, automatic governance and real-time protection for agentic AI, without extra setup. MCP Protect maps MCP server interactions and surfaces hidden endpoints, while built-in guardrails, enabled by default, enforce safe agent behaviour automatically.
Michael Nicosia, co-founder and COO of Salt Security, said: “Most organisations’ first AI security gap isn’t prompt and model jailbreak attacks, it’s the invisible API connections powering agents. Salt closes that gap by continuously discovering every API, governing it against policy, and protecting it in real time, including the fast-growing universe of agent-driven traffic.”
Salt Security’s new MCP Protect feature is designed to give organisations a clear view of their AI-powered systems. It automatically discovers and keeps an eye on all Model Context Protocol (MCP) servers and their interactions with AI agents, revealing connections that were previously hidden. The system then assesses the risk of these interactions, tracks sensitive data as it moves, and safeguards against any unsafe or malicious use of MCP servers.
This update introduces a new category of ready-to-use security controls. These controls ensure that AI agents behave safely by automatically detecting and addressing the most significant security vulnerabilities in both MCP and Agent-to-Agent (A2A) environments.
“From a security standpoint, it’s not just about what AI agents say, it’s what they actually do,” said Nick Rago, VP Product Strategy of Salt Security. “AI agents act through APIs, MCP, and A2A, but most organisations don’t have visibility into those actions. Salt gives you that visibility from day one, puts the right guardrails in place and protects against abuse and AI logic attacks in real time so your teams can move fast with confidence.”
