At CrowdStrike Fal.Con 2025, Salt Security unveiled the industry’s first solution designed to secure AI agent activity within the enterprise. As organizations embrace agentic AI, agents increasingly execute real-time API calls via protocols like MCP and A2A, introducing new risks. Salt is the first to unify API and AI security, delivering visibility into every agent-driven action, governance to ensure proper posture, and real-time protection against AI agent misuse. Salt will also showcase these advancements at Fal.Con and host the session, “When AI Agents Go Rogue: The Security Gaps You’re Missing,” on Tuesday, Sept. 16, 2025.
This release gives security teams immediate visibility, automatic governance, and real-time protection for agentic AI, without extra setup. MCP Protect maps MCP server interactions and surfaces hidden endpoints, while built-in guardrails, enabled by default, enforce safe agent behavior automatically.
A recent Gartner® report stated, “Widespread adoption of MCP and A2A will lead to more APIs and more API usage, not less.” They further project, “By 2028, 80% of organizations will see AI agents consume the majority of their APIs, rather than human developers.1”
“Most organizations’ first AI security gap isn’t model jailbreaks, it’s the invisible API connections powering agents,” said Michael Nicosia, co-founder and COO of Salt Security. “Salt closes that gap by continuously discovering every API, governing it against policy, and protecting it in real time, including the fast-growing universe of agent-driven traffic.”
What’s new in Salt Security
- MCP Protect: Discovers and monitors all MCP servers and their interactions with AI agents, giving organizations visibility into previously hidden connections. Salt automatically assesses the risk of these interactions, maps sensitive data in motion, and protects against malicious or unsafe MCP server usage.
- Agentic AI Governance: A new category of out-of-the-box security controls that enforce safe AI agent behavior, automatically detecting and addressing the riskiest exposures in MCP and A2A environments.
Leading with innovation
- Gartner recommends “double down on API security by adding specialist security solutions to supplement standard gateway protections. Rate-limiting and access management, in particular, are vital for APIs AI applications will consume when addressing the risk of data and services being abused by agentic use.1”
- Gartner also projects that by 2028,“80% of organizations will see AI agents consume the majority of their APIs, rather than human developers. 1”.
- New Salt research shows that only 37% of orgs using agentic AI have a dedicated API security solution, 48% run 6-20 agent types, widening the API attack surface.
- Out-of-the-box controls begin monitoring at first login to automatically detect high-risk exposures.
“From a security standpoint, it’s not just about what AI agents say, it’s what they actually do,” said Nick Rago, VP Product Strategy of Salt Security. “AI agents act through APIs, MCP, and A2A, but most organizations don’t have visibility into those actions. Salt gives you that visibility from day one, puts the right guardrails in place, and protects against abuse and AI logic attacks in real time so your teams can move fast with confidence.”
To learn how this release gives security teams immediate visibility, automatic governance, and real-time protection for agentic AI, visit the website here.
Related News:
New Salt Security Report: Securing the Future of Agentic AI
Unmask Hidden API Vulnerabilities with Salt Surface from Salt Security
1. Source: Gartner Report, How MCP and the A2A Protocols Impact API Management, by Shameen Pillai, Mark O’Neill etc., Aug 2025
