Hundreds of companies are showcasing their products and services this week at the 2025 edition of the RSA Conference (RSAC) in San Francisco.
To help cut through the clutter, the SecurityWeek team is publishing a daily digest summarizing some of the announcements made by vendors. Here is a roundup of the most important product and service announcements made on the first day of the event.
We have also made a list of the announcements made in the days leading up to the event (part 1, part 2, part 3).
Abnormal AI launches autonomous agents for employee training
Abnormal AI has launched two autonomous AI agents designed for employee security awareness training. One of the agents, AI Phishing Coach, enables organizations to replace generic training with a personalized, autonomous AI platform. The second agent, AI Data Analyst, turns complex security data into instantly usable intelligence.
Anetac extends identity vulnerability management platform
Anetac announced new capabilities to its Identity Vulnerability Management platform. The new capabilities unify non-human and human identity vulnerabilities to enable organizations to easily manage all identity vulnerabilities in one place. Current capabilities are being extended, including detection of behavioral anomalies, compromised credentials, dormant accounts, and access chain mapping.
Arctic Wolf introduces AI security assistant
Arctic Wolf has introduced Cipher, an AI security assistant developed in collaboration with Anthropic to deliver fast and accurate security insights within the Arctic Wolf Aurora Platform. Powered by Anthropic’s LLM technology and Arctic Wolf’s security telemetry, Cipher provides customers with instant, expert-informed analysis across endpoints, networks, cloud, and identity.
ArmorCode unveils agentic AI for AppSec and product security
ArmorCode has unveiled Anya, an agentic AI solution purpose-built for AppSec and product security teams. Anya delivers contextual insights across an organization’s security posture, addressing alert fatigue and helping accelerate and improve decision making. Anya acts as an intelligent, conversation-driven virtual security champion that interprets and correlates data from over 285 integrations in the ArmorCode platform.
Appknox releases post-launch app security solution
Mobile app security firm Appknox has unveiled Storeknox, a new solution targeting post-launch app security threats, such as fake apps impersonating brands, phishing, and malicious code introduced after an app goes live. Storeknox offers three key capabilities: centralized monitoring, real-time detection of fake and malicious apps, and proactive malware and phishing detection.
Apiiro releases Software Graph to track AI code risks
Agentic application security firm Apiiro has launched Software Graph Visualization, an AI-powered, real-time map for visualizing and tracking software architecture, vulnerabilities, and risk. Software Graph Visualization replaces static reports with live, contextual insight, helping teams instantly see and prioritize risks, especially those introduced by gen-AI code assistants.
AppOmni unveils SaaS security MCP server
AppOmni has announced a SaaS security Model Context Protocol (MCP) server to reduce manual labor for security teams and enable coordinated security decisions by delivering information from multiple security tools at once. This also delivers SaaS security risk visibility and deeper insights on SaaS identities.
[ Related: JPMorgan Chase CISO Fires Warning Shot Ahead of RSA Conference ]
BeyondTrust launches free identity security service
BeyondTrust announced a free identity security risk service that provides actionable insights to secure against vulnerabilities and help organizations tackle identity threats. The new service quickly reveals hidden Paths to Privilege, employing AI-based detection, and provides an initial set of prioritized findings to help guide security decisions.
Blackpoint Cyber addresses security tool fragmentation
Blackpoint Cyber has unveiled a solution to address security tool fragmentation. CompassOne is a new Unified Security Posture and Response platform that helps organizations take command of their entire cybersecurity posture—from visibility and prevention to response and recovery. The platform includes asset inventory, tenant manager, managed detection and response, exposure management, managed application control, and cloud posture management capabilities.
BrandShield launches external threat detection platform
BrandShield has launched Resolve, a new AI-powered external threat detection platform designed to give security teams protection against phishing, impersonation, and dark web threats. The tool combines AI-powered detection and analysis with access to BrandShield’s 24/7 SOC team.
Bugcrowd launches crowdsourced Red Team as a Service (RTaaS)
Bugcrowd announced the launch of a crowdsourced Red Team as a Service (RTaaS). This new service connects customers with vetted ethical hackers for various red team engagements. RTaaS is available on the Bugcrowd Platform, and customers can tailor their RTaaS engagements to meet specific needs, budget constraints, and organizational maturity.
Censys launches threat hunting module
Censys has launched its own threat hunting solution, which is specifically designed to enable threat hunting teams to track adversary infrastructure. The threat hunting module directly integrates into existing security operations, combining Censys data and features to empower security teams to shift from reacting to alerts and compromises, to proactively uncovering and mitigating threats.
Cisco unveils major security capabilities
Cisco unveiled security capabilities focused on helping enterprises respond faster to modern threats and adopt AI securely at scale. The networking giant announced new Cisco XDR capabilities and Splunk enterprise security automation, a deepened Cisco and ServiceNow partnership, new AI supply chain risk management capabilities in Cisco security products, and enhanced critical infrastructure protection for IT and OT. Cisco also launched Foundation AI, a team of leading AI and security experts to help enterprises address challenges of secure AI adoption, as well as the release of an open source reasoning model built specifically for enhancing security applications.
EQTY Lab launches AI Guardian
EQTY Lab has unveiled AI Guardian, a governance tool that aligns autonomous AI agents with security standards and business policies. AI Guardian introduces a new cryptographic certificate system rooted in an on-silicon trust layer to ensure that AI agents are compliant at runtime. This solution, developed in collaboration with Intel and NVIDIA, ensures agents are using authorized resources and policy-compliant logic at runtime. EQTY Lab is one of the top finalists at the RSA Innovation Sandbox.
Flashpoint adds new capabilities
Threat data and intelligence firm Flashpoint has added new capabilities to its flagship Ignite platform, including AI-powered risk discovery, curated threat feeds, and on-demand data source expansion.
Forescout announces NVIDIA integration
Forescout announced a new integration with NVIDIA BlueField DPUs, enabling its on-premises sensor to run directly on NVIDIA’s BlueField networking platform. This joint solution speeds up data processing, enhances asset intelligence, and improves real-time monitoring, providing security teams with the insights needed to stay ahead of emerging threats. The integration is especially impactful for critical infrastructure sectors.
Graylog announces Spring Release of Graylog Security
Graylog announced the Spring Release of Graylog Security. The company is rolling out new capabilities that enable threat detection with greater speed and flexibility, as well as refined analyst workflows and smart data retention. These new capabilities aim to solve cluttered alert noise and high-cost data models. Graylog is leveraging automation for cost-effective data lake storage and retrieval.
Huntress unveils enhanced Managed ITDR solution
Huntress has unveiled an enhanced Managed Identity Threat Detection and Response (ITDR) solution that provides proactive protection against OAuth application threats. The company has also released the Huntress 2025 Managed ITDR Report, which shows that identity-based attacks are increasing, while detection and response times are lagging. The company found that one-third of organizations hit by identity-based incidents reported losses of over $100,000.
Intel 471 announces threat hunt enhancements
Intel 471 announced enhancements to its HUNTER platform, including Bring Your Own Hunts, a feature that allows threat hunters to map hunt queries to tried-and-tested methodology for managing investigations and measuring hunt performance metrics, and Guided Threat Hunts, which helps security teams hunt advanced adversary behaviors with greater speed, decisiveness and consistency.
Lumu introduces SecOps Platform
Lumu has introduced its SecOps Platform, which unifies security operations into one connected experience, bringing together detection, intelligence, response, and compliance. Built to integrate with existing tools, the platform delivers visibility across the full attack lifecycle and automates response to stop threats at machine speed.
LiveDrop launches software-based data diode
Dutch tech company LiveDrop introduced a software-based data diode that behaves like a real data diode and offers the same level of security as traditional hardware data diodes, but without the associated cost and complexity. This software-based data diode provides companies with a scalable and efficient way to protect their systems against data leaks and attacks.
NetRise launches new product
NetRise announced the launch of a new product, named ZeroLens, which expands the NetRise platform’s capabilities by analyzing compiled code for CWEs that have yet to be classified as vulnerabilities. NetRise ZeroLens incorporates AI to summarize the CWEs found and guides remediation based on the context of the code around the discovered weaknesses.
NVIDIA enhances cybersecurity AI platform
NVIDIA announced that it’s bringing runtime cybersecurity to every AI factory with a new NVIDIA DOCA software framework, which is part of the chip giant’s cybersecurity AI platform. Running on the NVIDIA BlueField networking platform, DOCA Argus operates on every node to detect and respond to attacks on AI workloads.
Oasis Security launches automated provisioning for non-human identities
Oasis Security launched NHI Provisioning, a capability that automates the creation, governance, and security of Non-Human Identities (NHIs) from their inception. Designed to be infrastructure- and vault-agnostic, NHI Provisioning seamlessly integrates with enterprise environments ensuring that every NHI is fully secured from the moment it’s created, eliminating critical security risks without impacting developer experience and freedom of choice.
Palo Alto Networks announces new AI security, network security, and security operations capabilities
Palo Alto Networks has unveiled Prisma AIRS, an AI security platform designed to secure every AI app, agent, model, and dataset across the entire enterprise. Key capabilities include AI model scanning, posture management, automated penetration testing through AI red teaming, runtime security and security for AI agents against new threats. The company also announced Prisma Access Browser 2.0, an update to the SASE-native secure browser. New features include real-time visibility and access control for GenAI adoption, protection against evasive web attacks powered by Precision AI, and an enhanced user experience. With the release of Cortex XSIAM 3.0, the SecOps platform now combines proactive and reactive security measures and advanced email security.
Radware and SUSE team up for Kubernetes solution
Radware and SUSE announced a new tech partnership. The collaboration delivers a full-stack, cloud-native Kubernetes solution that protects workloads at scale from data centers to the edge. The Radware/SUSE solution improves protection of web apps, APIs, and data across cloud-native and edge environments, defending against cyber threats that traditional perimeter security tools can’t detect or mitigate.
RSA launches help desk security and passwordless products
RSA announced a suite of new help desk and passwordless innovations to defend enterprises against social engineering attacks. RSA Help Desk Live Verify is a solution that uses bi-directional identity verification between users and IT help desk staff to prevent threat actors from impersonating either of them. Windows Desktop Logon enables convenient and secure passwordless access to Windows desktops via QR code scanning and mobile FIDO logon. Secure Onboarding with ID Verification combats deepfake fraud during enrollment by leveraging government ID verification, liveness detection, and Mobile Match to ensure the user owns the device.
Sentra launches data security solution for AI agents
Sentra announced the launch of its Data Security for AI Agents solution. Sentra’s new solution helps enterprises control how AI agents access and interact with sensitive data. The product is purpose-built for securing AI workflows and preventing data exposure in increasingly autonomous environments.
Skyhigh Security enhances platform with DSPM capabilities
Skyhigh Security is enhancing its Security Service Edge (SSE) platform with Data Security Posture Management (DSPM) capabilities. These enhancements will help organizations tackle the challenges of data sprawl, ensure enhanced data security and compliance, and provide improved visibility. Fully integrated within the Skyhigh SSE platform, the DSPM offering leverages the company’s data security capabilities in AI and ML-driven classification, compliance and threat prevention to offer a seamless data protection solution.
SOCRadar launches Copilot
SOCRadar has launched Copilot, an AI-powered cybersecurity assistant designed to enhance platform efficiency, share knowledge and insights, and automate routine security operations. SOCRadar Copilot can aid security teams in streamlining security processes and reporting, all while continuously learning, adapting and evolving to help teams be proactive and future-proof their defenses against evolving risks.
Sumo Logic unveils intelligent security operations
Sumo Logic has announced new capabilities, including detection-as-code that brings DevSecOps best practices to threat detection, UEBA historical baselining that improves detection accuracy by learning user/entity behavior over time, multiple threat intelligence feeds for real-time alerting, and a prototype AI Insight Summary tool that uses generative AI to extract key patterns and summarize root causes from massive data volumes.
Tuskira launches virtual AI analysts workforce
Tuskira announced the launch of its fully autonomous AI Analyst Workforce. The company’s AI Analysts simulate real-world attacks, validate defensive coverage, and autonomously take action across SIEM, EDR, identity, and firewall tools to mitigate risks before they escalate into incidents.
Utimaco PQC readiness survey
Utimaco released the results of a post quantum cryptography (PQC) readiness survey, which found that nearly half of organizations will not be prepared in time for quantum threats. The survey found that 20% of organizations have already begun migrating to PQC, 34% plan to begin within 1-3 years, 21% expect to start to migrate within 3-5 years, and 25% have no plans to migrate to PQC.
Varonis announces AI Shield
Varonis announced AI Shield, a solution that continuously identifies data exposure in real time, flags violations, and automatically fixes issues. Varonis AI Shield continuously analyzes an organization’s AI security posture, monitors how AI interacts with data, and dynamically adjusts permissions so that sensitive information isn’t exposed due to poor data security hygiene.
Wallarm unveils agentic AI protection
API security firm Wallarm announced Agentic AI Protection, a capability that enhances the company’s platform to secure AI agents against prompt injection, jailbreaks, system prompt retrieval, and agent logic abuse.
Zimperium publishes 2025 Mobile Threat Report
Zimperium released its 2025 Global Mobile Threat Report, which found that mobile is now a primary attack surface. Its researchers found that smishing has rapidly grown to comprise over two-thirds of mobile phishing attacks, vishing and smishing tactics grew by 28% and 22%, over 25% of mobile devices can’t upgrade to the latest OS versions, over 60% of iOS and up to 34% of Android apps lack basic code protection, and nearly 60% of iOS and 43% of Android apps vulnerable to PII data leakage.
