Cisco to Buy WideField Security for Splunk AI-Agent Defense as Agentic Risks Rise

3 articles · Updated · Cisco Blogs · Jun 19

Cisco said it plans to acquire WideField Security and fold its technology into Splunk to strengthen the platform’s Agentic SOC for AI-agent security.
WideField’s tools normalize and correlate identity, session and activity telemetry, letting Splunk link signals across human users, non-human identities and AI agents, including data from Cisco Identity Intelligence.
Cisco said that added context should help security teams and automated workflows determine whether an action came from a legitimate active session or a potentially malicious one, enabling faster machine-speed detection and response.
The deal targets a growing risk from autonomous workloads and approved AI agents taking unsafe actions in the wrong context, a problem Cisco says many enterprises were not built to handle.
WideField follows Cisco’s recent Astrix Security and Galileo additions, extending its push to build an enterprise trust layer for agentic AI across identity, behavior, visibility and enforcement.

Sources

Beyond monitoring AI agents, what stops them from exploiting the insecure legacy systems they connect to?

When an AI agent causes a breach, who is legally responsible—the user, the developer, or the company?