版权说明:本文档由用户提供并上传,收益归属内容提供方,若内容存在侵权,请进行举报或认领
文档简介
AITHREAT
LANDSCAPEREPORT
TABLEOFCONTENTS
04FOREWORD
05SECURITYFORAISURVEYINSIGHTSATAGLANCE
11AITHREATLANDSCAPETIMELINE
13WHAT’SNEWINAI
17PART1:RISKSPOSEDBYARTIFICIALINTELLIGENCE
17RiskstoSociety
20AI-PoweredCybercrime
26PART2:RISKSFACEDBYAI-BASEDSYSTEMS
26AttacksonModelFoundations
30AttacksAgainstGenAI
33AgenticSystemsSecurity
39AISupplyChainSecurity
47PART3:ADVANCEMENTSINSECURITYFORAI
47DefensiveFrameworksandInitiatives
51TheStateofAIRedTeaming
51NewGuidance&Legislation
57Part4:PredictionsandRecommendations
57Predictionsfor2026
60RecommendationsfortheSecurityPractitioner
61AboutHiddenLayer&Resources
2
3
4
FOREWORD
WeareenteringthenextphaseoftheAIrevolution.Whatbeganaspredictivemodelsandgenerativeinterfacesisrapidlyevolvingintoautonomous,agenticsystemscapableofplanning,reasoning,andactingonourbehalf.In2026,nomission,enterprise,orgovernmentagencywillremainuntouchedbyAIagentsoperatingacrossworkflows,networks,andcriticalinfrastructure.
AgenticAIrepresentsaprofoundleapforward.Thesesystemsarenolongerlimitedtorespondingtoprompts.Theycansetgoals,calltools,interactwithothersystems,generatecode,initiatetransactions,andadaptdynamicallytochangingenvironments.Properlyharnessed,theypromiseunprecedentedoperationalefficiency,acceleratedinnovation,andentirelynewmodelsofproductivity.Butautonomychangestheriskequation.
WhenAIsystemsareempoweredtotakeaction,theattacksurfaceexpandsdramatically.Thesamecapabilitiesthatenableagentstoautomatebusinessprocessescanbemanipulatedtoautomateexploitation.Thesamereasoningloopsthatdriveefficiencycanberedirectedtowardmaliciousobjectives.AsAIgainsagency,adversariesgainleverage.
Makenomistake,thedefiningAIsecuritychallengeofthiseraisnothypotheticalsuperintelligence.Itistheweaponization,manipulation,andcompromiseofautonomoussystemsbybadactors.
Agenticarchitecturesintroducenewlayersofvulnerability,includingtoolpoisoning,memorymanipulation,modelcontexthijacking,multi-agentcollusion,identityabuse,dataexfiltrationviaactionchains,andtheexploitationofdecision-makingloops.Theserisksarenottheoretical.Theyareemergingnowacrosscommercialenterprisesandfederalenvironments,experimentingwithAI-drivenautomation.
Traditionalcybersecurityprinciplesremainessential,buttheyarenolongersufficientontheirown.SecuringagenticAIdemandscontinuousvalidationofmodelbehavior,real-timeinspectionofagentactions,guardrailsaroundtoolaccess,andcontrolsthataccountforsystemscapableofindependentexecution.TheconvergenceofAIsecurityandapplicationsecurityhasneverbeenmoreurgent.
Inthisyear’sreport,weexaminehowtheriseofagenticAIisreshapingthethreatlandscape.WedetailthenovelattackpatternstargetingautonomoussystemsandanalyzehowadversariesareadaptingproventacticstoexploitAI-drivenworkflows.WesharefindingsfromsecurityandAIleadersdeployingagentsinproductionenvironments,alongwithdata-driveninsightsfromourworksecuringenterpriseAIsystems.Finally,wehighlightadvancementsinprotectivecontrolspurpose-builtforagenticarchitectures.
Asorganizationsracetowardautonomy,securitymustmovejustasquickly.Innovationwithoutprotectioninvitesdisruption.Autonomywithoutoversightinvitesabuse.
Letthisreportserveasaguidefornavigatingtheagenticeraresponsibly.Whetheryouarebuilding,deploying,ordefendingautonomoussystems,weinviteyoutojoinusinsecuringAInotjustasatool,butasanactorinourdigitalworld.
Weareproudtopresentthe2026HiddenLayerAIThreatLandscapeReport.
Tito
CEO&Co-Founder
(UnassistedbyLLMs)
SECURITYFORAISURVEYINSIGHTSATAGLANCE
erodescontrol,withmostorganizationsacknowledginguntrackeddeploymentsthatbypassgovernance,monitoring,andapprovalprocesses.Inagenticenvironments,delayeddetectionandunclearownershiparenotjustinefficiencies;theyenableautonomoussystemstopropagateharmfasterthantraditionalsecuritymodelsweredesignedtohandle.
Atthesametime,AIhasbecomefoundationaltobusinessoperations.Mostorganizationsnowconsiderbothinternallyoperatedandthird-partyAIsystemscriticaltorevenue,customerexperience,andoperationalresilience,yetconfidenceinvendorsecurityremainslimited.Takentogether,thefindingsreinforceacoreconclusionreflectedthroughoutthisreport:AIsystemsshouldbeassumedexploitable,notmerelyvulnerable.SecuringAIinanagenticerarequiresashiftawayfromone-timecontrolsandpolicyassertionstowardcontinuousaccountability,runtimemonitoring,enforceablegovernance,third-partyassurance,andsecuritymechanismsdesignedforsystemsthatevolveandactbeyondhuman-in-the-loopoversight.
Thisyear’ssurveyrevealsagrowingdisconnectbetweenhowAIsystemsarebeingdeployedandhowtheyarebeingsecured.OrganizationsarerapidlyoperationalizingAIwithincreasingautonomy,whilesecurityprogramsremainlargelyoptimizedforstaticmodelsandtraditionalapplicationcontrols.Foundationalsafeguardssuchasencryptionandsecuredeploymentarenowcommon,buttheoperationalcontrolsrequiredtomanageagenticbehavior,provideruntimevisibility,conductadversarialtesting,andimplementAI-specificincidentresponseremainunevenlyimplemented.AsAIsystemsgaintheabilitytoact,integrate,andmakedecisionsindependently,thesegapsarenolongertheoretical;theyarebecomingsourcesofsystemicenterpriserisk.
Thatriskisamplifiedbylimiteddetectionconfidenceandfragmentedaccountability.Nearlyone-thirdoforganizationscannotdefinitivelydeterminewhethertheyexperiencedanAIsecuritybreachinthepastyear,evenasattacksremainsteadyorincreaseandfrequentlyoriginatefrompublicmodels,chatbots,andagent-enabledsystems.ShadowAIfurther
AI’sCriticalRoleinBusinessSuccess
88%
78%
oforganizationsreportthatmostorallinternallyoperatedAImodelsarecriticaltobusinesssuccess.
reportthatembeddedthird-partyAImodelsarealsobusiness-critical,extendingriskbeyondinternaldeployments.
97%
92%
statethatAIprojectsarecriticalorimportanttorevenuegenerationoverthenext18months.
sayAIiscriticalorimportanttocustomerexperience,and96%tocorebusinessoperations,raisingtheimpactofAIsecurityfailures.
5
RisingAttacks—WithUnevenDetectionConfidence
69%
reportuncertainty,indicatingpersistentgapsinmonitoringanddetectionasAIsystemsgainautonomy.
sayattacksonAIsystemshaveincreasedorremainedthesamecomparedtothepreviousyear.
oforganizationsdefinitelyknowwhethertheyexperiencedanAIsecuritybreachinthepast12months.
AttackVectorsforAIBreaches
35%
Malwareinmodelspulledfrompublicrepositories
31%
14%
Third-partyapplications
13%
Attacksonagents
Inferenceattacksonpredictivemodels
6%
Attackoninternalorexternalchatbot
31%
71%
Sources&MotivationsofAIAttacks
TopSourcesofAIAttacks
◉Criminalhackinggroups—52%
◉Third-partyserviceproviders—45%
◉Freelancehackers—38%
◉Competitors—35%
◉State-sponsoredactors—31%
TopMotivationsforAIAttacks
◉Financialgain—50%
◉Sensitivedataexfiltration—48%
◉Businessdisruption—42%
◉Modeltheft—39%
◉Competitiveadvantage—27%
6
7
GLOBALORIGINSOFAIATTACKS
NorthAmerica58%Europe41%
Asia31%
SouthAmerica28%Africa20%
Unknown10%
41%58%
20%
31%
28%
Disclosure,Transparency,andRegulatoryPressure
53%
85%
ofleadersagreethatcompaniesshouldbelegallyrequiredtodiscloseAIsecuritybreaches.
However,53%reportthattheirorganizationhasoptednottodiscloseanAIincidentduetoreputationalconcerns.
TopThird-PartyGenAIApplicationsinUse
◉ChatGPT—77%
◉MicrosoftCopilot—68%
◉Gemini—57%
◉Claude—32%
◉Salesforce—27%
ChallengesinSecuringAgenticAI
◉76%reportthatshadowAI—unapprovedoruntrackedAIdeployments—isadefiniteorprobableproblem,butonly34%partnerexternallyfordetection.
◉93%useopen-weightmodelsfromrepositoriessuchasAWS,Azure,andHuggingFace,increasingexposuretosupplychainrisk,yetfewerthanhalfreportconsistentlyscanninginboundmodelsformaliciouscontentorintegrityissues.
TimeandResourcesDevotedtoAISecurity
◉Onaverage,professionalsreportspending46%oftheirtimeaddressingAIriskandsecurity.
◉91%haveaddedbudgetforAIsecurityin2025.
◉However,only58%allocate10%ormoreofAIspendingtoriskandsecuritymitigation,suggestingunderinvestmentrelativetodependency.
SECURITY
MEASURES&
GAPSINAGENTICAIDEFENSE
MostCommonAISecurityPractices
58%
BuildingrelationshipsbetweenAIandsecurityteams
54%
CreatinganinventoryofAImodels
50%
Determiningsourceoforiginformodels
32%
ScanningandauditingAImodels
32%
Extendingdetection&responsetoAIassets
29%
Only29%haveadedicatedAIincidentresponseplan.
19%
Only19%reportperformingmanualorautomatedAIredteaming.
Governance,Frameworks,andAccountability
haveimplementedanAIgovernancecommitteeorexecutivestructure.
reportclearlydefinedAI-relatedrolesbetweensecurityanddatascienceteams.
oforganizationsreportinternaldebateorconflictoverAIsecuritycontrol,highlightingtheneedforclearerteamalignments.
83%
68%
73%
TopFrameworksUsedtoGuideAISecurity
◉GartnerAITrust,Risk,andSecurityManagement—57%
◉GoogleSecureAIFramework—56%
◉IBMFrameworkforSecuringGenerativeAI—53%
◉NISTAIRiskManagementFramework—48%
◉DatabricksAISecurityFramework—41%
8
20252026
YEAR-OVER-YEAR
Exposure&Disclosure
Organizationsadmittingtheywithhelddisclosureduetobacklashconcerns
OrganizationsidentifyingshadowAIasaknownorprobablerisk
53%
45%
76%
61%
Visibility&Detection
OrganizationsdefinitivelyknowthattheyhaveexperiencedanAI-specificbreach
Organizationsreportingtheyprobablydon’tknow,don’tknow,orhavenowaytoknowifanAIbreachoccurred
67%
74%
33%26%
OrganizationalDynamics
OrganizationsreportinginternaldebateorconflictoverAIsecurityinitiatives
73%
76%
AICriticality
AIprojectsratedcriticalorimportanttorevenuegenerationOrganizationssayingallormostoperatedAImodelsarecritical
tobusinesssuccess
88%
96%
97%89%
SurveyHighlights
◉1in8AIbreachesarearesultofAIagents
◉Over1/3rdofAIbreachesarearesultofAIchatbots
◉GovernanceExists-ButIt’sChaotic
•83%havegovernancecommittees,73%reportconflict,andonly68%haveroleclarity
◉Open-weightmodelsarethetopsourceofAIbreaches
•Malwareinpublicrepositoriesaccountsfor35%
ofbreaches,yet93%oforganizationsstillusethem
9
AITHREATLANDSCAPEINANUTSHELL
RisksrelatedtotheuseofAI
EvolutionofrisksfacedbyAI-basedSystems
Poisoningattacks
Inferenceattacks(Modelevasion&theft)
AIsupplychainattacks(Modelhijacking:serializationvulnerabilities&graphbackdoors)
GenAIpromptattacks(Guardrailbypass,indirectpromptinjection,promptobfuscation)
Attacksagainstagenticsystems
10
AITHREATLANDSCAPETIMELINE2025
AIMilestones,RisksPosedbyAI,RisksFacedbyAI,SecurityInitiatives
JAN
◉AnoveluniversalbypassforallmajorLLMsunveiledbyHiddenLayer
◉OpenAIlaunchesOperator-oneofthefirstAIagents
◉ServiceNowlaunchesAIAgents&Orchestrator
◉Googleagreestoinvest$1billionintoAnthropic
◉AstudypublishedinNatureMedicinerevealsmedicalLLMshighlypronetopoisoning
◉ModelgenealogytechniquecalledShadowGenespublishedbyHiddenLayer
◉InvariantLabsdiscoversMCPvulnerabilitythatallowsfortoolpoisoningattacks
◉SpiderLabspublishesAgentIntheMiddle-atechniqueofabusingA2Aprotocol
◉ModelSigningProjectv1.0releasedbyOpenSSFAI/
MLWorkingGroup
o-MAY
FEB
◉AnthropiclaunchesClaude4andmakesClaudeCodegenerallyavailable
◉MSannouncesnativesupportforMCPonWindows11
◉DockercreatesMCPcatalogue
◉HiddenLayer’sresearchersdemonstrateparameterabuseinMCPservers
◉MITREproposesadefender-focusedframeworkSAFE-AI
◉ThefirstAISBOMgeneratortoolunveiledatRSA2025conference
◉AnthropiclaunchesClaude3.7Thinking
◉OpenAIlaunchesGPT-4.5andDeepResearch
◉Storm-1516disinformationoperationtargetselectionsinGermany
◉BasiliskVenomattackshowshowhiddenpromptscancreatebackdoorsinmodels
◉OWASPstartstheirAgenticSecurityInitiative
◉CloudSecurityAlliancereleasesAgenticAIThreatModelingFrameworkMAESTRO
JUN
◉SalesforcereleasesAgentforce3.0
◉ResearchersatCyLabdemonstratedatapoisoningattackswith0.1%ofpoisoneddataset
◉CVPR2025paperstakebackdoorandevasionattacksonmodelstothenextlevel
◉HiddenLayerdemonstratesTokenBreak-amethodtobypassguardrailmodels
◉Asanadisclosesamajorcross-tenantbreachcausedbyabugintheirMCPserver
◉BackslashSecurity’sresearchfindshundredsofmisconfiguredMCPservers
◉HiddenLayerpublishestheAPEtaxonomyforclassificationofpromptattacks
o-MAR
◉OpenAIadoptsMCPacrossitsproducts
◉MicrosoftintegratesagentsintoCopilotStudio
◉GooglereleasesGemini2.5Pro-thinkingmodelwithadvancedreasoning
o-APR
◉
MicrosoftintroducesAgentFlows-AnAIworkflowautomationinCopilotStudio
◉
◉
GooglelaunchesMCPToolboxforDatabases
GoogleintroducesAgent2Agentprotocolforinter-agentcommunication
◉
TeenagerdiesafterconfidingsuicidalthoughtstoChatGPT
◉
Paper“MachineUnlearningFailstoRemoveDataPoisoning”publishedatICLR2025
◉
Researchersprovesimpleinterferencecanfooltrafficsignrecognitioninself-drivingcars
11
Moldova’selection
JUL
◉HiddenLayerunveilspracticalcodeassistantAIviruses
◉KoidiscoversthefirstmaliciousMCPserverinthewild
◉AWSintroducesKiroAI-anagenticIDE
OCT
◉CognitionacquiresWindsurfAIIDE
◉OpenAIlaunchesChatGPTAtlasagenticbrowser
◉AmazonBedrockAgentCorebecomesgenerallyavailable
◉Researchersprovethatevenaslittleas250maliciousdocumentscanpoisonLLMs
◉TheVirusInfectionAttack(VIA)isintroducedatNeurIPS2025
◉DeserializationvulnerabilityinKeras(CVE-2025-49655)isdisclosedbyHiddenLayer
◉CoSAIpublishesAIIncidentResponseFrameworkv1.0
◉MicrosoftcreatesDataverseMCPServer
◉MicrosoftintroducesEdgeCopilot-anAImodefortheEdgebrowser.
◉PerplexityAIintroducesComet-abrowserwithanintegratedAIassistant
◉MandiesbysuicideafterreceivingencouragingmessagesfromChatGPT
◉Vinciworksreportsover50casesinvolvingfakelegalcitationsgeneratedbyAI
◉CERT-UAdiscoversLAMEHUG,aninfostealerthatreliesonLLM
NOV
◉HiddenLayerdemonstrateshiddenpromptinjectionsthatcanhijackAIcodeassistants
◉AnthropicreleasesClaudeOpus4.5
◉GooglelaunchesAntigravity-anagent-firstIDE
◉ReleaseofClawdbot(nowOpenClaw)-afree,open-sourcepersonalAIassistant
◉AnthropicunveilsthefirstAI-driven,large-scalecyberespionagecampaign
◉GoogledetailsseveralstrainsofnovelAI-poweredmalware
◉UKconsumerswarnedoverAIchatbotsgivinginaccuratefinancialadvice
◉HiddenLayerpublishesEchoGram-avulnerabilityunderminingAIguardrails
◉CriticalRCEVulnerabilityfoundinmcp-remotepackage
◉CoalitionforSecureAIpublishesPrinciplesforSecure-by-DesignAgenticSystems
AUG
◉OpenAIreleasesGPT-5
◉ManhospitalizedaftertrustingChatGPTadvice
◉ManmurdershismotherandkillshimselfafterChatGPTfuelshisparanoiddelusions
◉Anthropicreleasesreportdetailingthefirstfullyautomatedcybercrimecampaign
DEC,2025-EARLYJAN,2026
◉Anthropic’sReporthighlightstheuseofAIinromancescamsandremoteworkerfraud
◉GoogleGemini3DeepThink
◉MistralAIlaunchedtheMistral3family
◉OpenAIreleasesGPT-5.2
◉GoogleaddsMCPsupportforGoogleservices
◉WIREDenquiryuncoversoneofthefirstinstancesofdeepfake-as-a-service
◉SexualizeddeepfakecontentgeneratedwithGrokfloodsxAI
◉TheChameleon’sTrapcampaignusesphishingemailswithhiddenpromptinjections
◉HiddenLayerresearchersportShadowLogicbackdoorintoagenticsettings
◉CheckmarxrevealmodelconfusionattacksonHuggingFace
◉OWASPformallylaunchestheirAIBOMProject
◉OWASPreleasesTop10forAgenticApplications
◉NISTreleasespreliminarydraftoftheirCyberAIProfile
◉ThefirstknownAI-poweredransomware,PromptLock,isdiscoveredbyESET
◉HiddenLayerunveilsVISOR-atechniqueofmodifyingmodelbehaviorusingimages
◉HiddenLayerdemonstratespersistentlogicalbackdoors
◉MajorsupplychainbreachthroughSalesloft’sDriftAIchatbotimpactshundredsofbusinesses
◉S1ngularitybecomesthefirstknownsupplychainattackthatscansforandleverageslocallyaccessibleLLMs
SEP
◉AnthropiclaunchesClaude4.5Sonnet&Opus
◉OperalaunchesNeonagenticbrowser
◉GoogleintroducesAgentPaymentProtocol
◉Nvidiaintendstoinvest$100billionintoOpenAI
◉ASML&MistralAIenterstrategicpartnership
◉Disinformationcampaignspreadsdeepfakestargeting
12
13
WHAT’SNEWINAI
Ayearhaspassedsinceour
previousAIThreatReport
,andthelandscapeofgenerativeAIhasshiftedsignificantly,withthepaceofimprovementsthrough2025matching,andinsomecasesexceeding,thatofthepreviousyear.Amongthesedevelopments,themostsignificantincludetheevolutionofdeepreasoningmodels,alongsidesmaller,highlyspecializedEdgeAImodels,andtherapidpopularizationofagenticAIsystems.
2025InflectionPoints
GenerativeAImodelshavecontinuedtogrowinscale,capability,andversatility,andoverthepast12months,haveintroducednewcapabilitiessuchasreasoningandself-improvement.Thesecapabilitieshavebecomecentraltohowmodernfoundationmodelsoperate.
DeepSeekR1&OpenAIO1
GPT-5.2,Gemini3,Opus4.6
EarlyReasoningModels
EmergentReasoningStructuredInference
NextGenerationModels
ExtendedReasoning
Multi-DomainProblem-Solving
WhatbeganwithearlyreasoningmodelssuchasDeepSeekandOpenAI’sO1hassinceledtomoreadvancedfoundationmodelslikeOpenAI’s
GPT-5.2
,Google’s
GeminiDeepThink,
andClaude
Opus4.6
thatexplicitlyallocateinferencetimetoreasonthroughcomplexproblemsbeforeproducingananswer.ThiscapacityforpausingandreflectionaffectshowLLMshandle
mathematicalproofs,
scientificquestions,andsituationswherenuancematters.
Inadditiontobuildinglargergeneral-purposemodels,thereisalsoatrendofimprovingsmall,specializedmodelsdesignedfordeploymentinsmartphones,autonomousvehicles,IoTsensors,andotherembeddedsystems.Theseso-called
tinymodels
,compactenoughtorunentirelyon-device,havebecomeincreasinglydesirableasorganizationsshiftfromcentralizedcloudinfrastructuretowardlocal,oredge-based,deployment.
While
edgeAI
maylackthebreadthandflexibilityofcloud-basedsystems,itbenefitsfromdeepspecializationtailoredtothespecificdomainsinwhichitisdeployed,includinghealthcare,finance,defense,andtransportation.Theyalsoofferbenefitsthatarecriticalinmanyenvironments,particularlyincriticalinfrastructure,includingimprovedprivacy,low-latencyresponses,andofflineoperation.
14
HDDNAYE
TheconversationaroundautonomousAIagentsgainedmomentumin2024,butitwasn’tuntil2025thatthingstrulybegantotakeshape.Theshiftfromexperimentaldemonstrationstoproduction-gradesystemsoccurredrapidly,asmajorvendorsexpandedAIcapabilitiesbeyondquestionansweringintoautonomoustaskexecution.
AIagentsvarywidelyinformandfunction,withapplicationsspanningabroadrangeofusecases.Forthepurposeof
simplicity,twoprimarycategoriesofAIagentsemergedin2025:general-purposeagents,whicharemultifunctional,desktop-integratedassistants,andapplication-specificagents,designedtooperatewithinnarrowlydefinedsoftwareenvironments.
Belowareafewhigh-profilepioneeringexamples,asseveralbusinessesacrosssectorsfollowedwiththereleaseoftheirownsolutions.
Type
Developer
Name
Description
InitialReleaseDate
Multipurposeuserassistant
Project
Mariner
AnexperimentalChromeextensioncapableofbrowsingwebsitesandreasoningacrossbrowsercontent.
Prototypeintroducedinlate2024
Multipurposeuserassistant
OpenAI
Operator
OneofthefirstAIagentsbuilttonavigatewebsitesandcompletetasksonbehalfofusers.NowfullyintegratedintotheChatGPT
agent.
January2025
Multipurposeuserassistant
OpenAI
Deep
Research
Modelfocusedoninformationretrievalanddataanalysis,capableofperformingmulti-stepresearchformorecomplextasks.NowunifiedintoaChatGPTagent.
February2025
Multipurposeuserassistant
Gemini2.5
Introducedagenticandreasoningcapabilities.
March2025
Multipurposeuserassistant
Anthropic
Claude4
Sonnet&
Opus
Modelswithagenticcapabilitiesandextendedthinking.
March2025
Multipurposeuserassistant
Anthropic
Claude4.5
Sonnet
Furtherevolutionofreasoningandagenticfeatures.
September2025
Multipurposeuserassistant
Anthropic
Claude4.5
Opus
Furtherevolutionofreasoningandagenticfeatures.
November2025
Multipurposeuserassistant
Gemini3&
Gemini3
DeepThink
Improvedagenticandreasoningcapabilities.
December2025
Agenticbrowser
Microsoft
EdgeCopilot
AImodeforEdgebrowser.
July2025
Agenticbrowser
PerplexityAI
Comet
AbrowserwithanintegratedAIassistantandPerplexity’sAIsearchengine.
March2025
Agenticbrowser
OpenAI
ChatGPT
Atlas
Abrowserwithabuilt-inChatGPTagent.
October2025
Agenticbrowser
Opera
Neon
Abrowserwithagenticcapabilities.
December2025
Codingassistant
Cognition
Windsurf
AgenticIDE.
November2024;
acquiredbyCognitioninJuly2025
Codingassistant
Anthropic
ClaudeCode
Terminal-firstAIcodingassistantthatdeeplyunderstandsfullcodebasesusingagenticsearchtoscanandinterpretentireprojectswithoutmanualfileselection.
February2025
HDDNlAYER
Type
Developer
Name
Description
InitialReleaseDate
Codingassistant
OpenAI
Codexagent
Cloud-basedsoftwareengineeringagent.
May2025
Codingassistant
AWS
Kiro
AgenticIDE.
July2025(preview),November2025(GA)
Codingassistant
Antigravity
EnablesdeveloperstodelegatecomplexcodingtaskstoautonomousAIagents.
November2025
AIautomationframework
n8nGmbH
n8n
AnAIworkflowautomationframeworkthatevolvedintoanagenticsolution.
Late2024-early2025
AIagentplatform
ServiceNow
AIAgent
Orchestrator
AcentralmanagementsystemforAIagentsspecializedinITservicemanagement,HR,CRM,andriskmanagement.
January2025
AIautomationframework
Microsoft
AgentFlows
AnAIworkflowautomationfeaturebuiltintoMicrosoftCopilotStudio.
April2025
AIagentplatform
Salesforce
Agentforce
3.0
AsuiteofnativeAIagentsdesignedtosupportawiderangeofbusinessoperations.
June2025
AIagentplatform
Amazon
Bedrock
AgentCore
Aplatformforbuilding,deploying,andscalingAIagents.
July2025(preview);October2025(GA)
ProtocolsStandardization
Thespeedatwhichagenticapplicationsevolvedisverynotable.Behindthescenes,though,infrastructurehasemergedasthedefiningfactor.Foragentstoworkacrossdifferentsystemsandservices,everyoneneedstospeakthesamelanguage,and2025sawanexplosionofprotocolsandtoolingthatmadethispossible.The
ModelContextProtocol
(MCP),introducedbyAnthropicinlate2024,gainedsignificanttractionasastandardizedmechanismforconnectingAIagentstoexternaldatasourcesandtools.Google’s
Agent-to-Agent
(A2A)protocolemergedinApril2025asthefirststandardforinter-agentcommunication.Afewmonthslater,Googlereleasedthe
Agent
PaymentProtocol
(AP2),aimedatenablingsecure,agent-initiatedpayments.Numerouscompaniesrushedtoreleasetheirownagenticframeworksduringthisperiod,includingOpenAI’sAgentKit,StrandsAgentsSDK,andAmazon’sBedrockAgentCore.It’sbecomeclearthatagenticAIdependsnotonlyonmodelcapabilitybutonabroaderecosystemofsupportinginfrastructure.
Majortechnologyprovidershavemovedquicklytosupporttheseprotocols,reflectingtheirstrategicimportanceforfutureAIplatforms.Googlereleasedthe
MCPToolboxfordatabases
andannounced
MCPsupportforGoogleServices
.OpenAIadded
remoteMCPsupport
andwrappedsomeoftheirexistingtoolstoworkwithintheprotocol.Microsoftbuilt
MCPsupport
directlyintoWindows
andcreateda
DataverseMCPserver
.Chromegot
DevToolsMCPintegration
.Thiswasfollowedbyrapidadoptionacrosstheecosystem,withAWS,GitHub,Salesforce,Asana,Cloudflare,PayPal,Stripe,anddozensofothersdeployingtheirownMCPservers.Dockerevencreatedanentire
MCPcatalog
tohelpdevelopersfindanddeploythem.
Withinmonths,whatstartedasanichetechnicalspecificationbecamethestandardwaythatAIagentsconnectedtotherestofthedigitalworld.Today,MCPboasts
100milliondownloads
eachmonth
.Unfortunately,aseverybodyrushestodeployagenticsolutions,thesecurityofthesesystemslagsbehind,creatingavastnewattackvector.
15
HDDNAYE
MajorInvestments&Partnerships
InvestmentinAIduring2025reachedlevelsthatwouldhaveseemedimplausibleonlyafewyearsearlier,withdealsthatreshapedthecompetitivelandscapealmostovernight.
Atthebeginningof2025,techgiantspledged$500billiontothe
USStargateProject
,and
Googleagreedtoinvest$1billion
intoAnthropic
,continuingitsstrategyofbackingmultiplehorsesintheracewhilehedgingagainstbeingleftbehind.InSeptember,
Nvidia’scommitmentto
温馨提示
- 1. 本站所有资源如无特殊说明,都需要本地电脑安装OFFICE2007和PDF阅读器。图纸软件为CAD,CAXA,PROE,UG,SolidWorks等.压缩文件请下载最新的WinRAR软件解压。
- 2. 本站的文档不包含任何第三方提供的附件图纸等,如果需要附件,请联系上传者。文件的所有权益归上传用户所有。
- 3. 本站RAR压缩包中若带图纸,网页内容里面会有图纸预览,若没有图纸预览就没有图纸。
- 4. 未经权益所有人同意不得将文件中的内容挪作商业或盈利用途。
- 5. 人人文库网仅提供信息存储空间,仅对用户上传内容的表现方式做保护处理,对用户上传分享的文档内容本身不做任何修改或编辑,并不能对任何下载内容负责。
- 6. 下载文件中如有侵权或不适当内容,请与我们联系,我们立即纠正。
- 7. 本站不保证下载资源的准确性、安全性和完整性, 同时也不承担用户因使用这些下载资源对自己和他人造成任何形式的伤害或损失。
最新文档
- 公墓下葬协议书范本
- 民营银行三方支付协议书
- 电子商务业务合伙协议书
- 红外遥控协议书库的作用
- 福建省特许经营协议书文件
- 一加9兼容pd协议书
- 勘察工作方案布置
- 付款报销签字制度
- 原神请先阅读并同意协议书
- 屋顶花园台风抗风植被施工方案
- 2026年四川省成都市网格员招聘考试参考题库及答案解析
- 招投标管理办法
- (新教材)2026年部编人教版三年级下册语文 第六单元《口语交际:应该怎样安排座位》教学课件
- 公务车辆租赁管理办法
- 电子设备装接工职业技能资格知识考试题与答案
- 2025年全椒县人民医院面试题库及答案
- 助贷公司运营管理制度
- 脑卒中社区康复阶梯式个案管理实践
- 面点厨师培训教程课件
- 黑龙江省哈尔滨市2025年中考语文真题试卷附真题答案
- T-CAMDI 135-2024 输液、输血器具用共聚聚酯(PCTG)专用料
评论
0/150
提交评论