In the recent Salesforce attack (UNC6040), threat actors used voice phishing campaigns to obtain initial access and run bulk API queries for large-scale data theft and extortion. The Salesloft Salesforce supply chain breach (UNC6395) illustrated the fragility of SaaS-to-SaaS integrations where one compromised chatbot integration expanded into unauthorized access across Salesforce and downstream applications, including Google Workspace, Slack, Amazon S3, Microsoft Azure and other services at hundreds of enterprises. These attacks underscore the growing pattern of data exfiltration through SaaS integrations.

The rise of AI agents and its rapid pace of adoption further escalates the SaaS security challenge. Low-code and no-code platforms like Microsoft Copilot Studio, ChatGPT Enterprise, Salesforce Agentforce and n8n let any employee build and deploy agents that act inside SaaS applications, chaining tasks, querying data, and executing decisions autonomously without oversight. These agents often carry broad privileges, long-lasting tokens and move sensitive business data at machine speed. If compromised, they can rapidly leak data, escalate access and move laterally across connected SaaS applications, causing widespread damage.

"The AI agent shift is well underway, and we're seeing the risks firsthand as we help our customers scale adoption securely," said Hasan Imam, CEO at Obsidian. "87% of enterprises have Microsoft Copilot enabled, more than half the agents access sensitive data, 90% are over-permissioned, and move 16 times more data than humans accessing SaaS applications. These risks are not theoretical, they're active risks inside enterprises today, often without their awareness."

Traditional security tools lack visibility into machine-driven activity, cannot contextualize underlying privileges and are unable to enforce controls at the speed and scale of autonomous agents.

"The difference between a major intrusion and successful containment comes down to speed," said Sunil Seshadri, EVP and CSO at HealthEquity and ex-CISO at Wells Fargo, Visa and NYSE. "Most security teams already struggle to react to incidents fast enough and AI agents raise the stakes even higher. They can trigger workflows across multiple SaaS apps in seconds, often without anyone noticing until damage is done. Obsidian flips that dynamic by detecting issues in near real-time, faster than most security tools are able to, giving teams the chance to shut them down before they spiral out of control." As a board member of Obsidian Security, Sunil provides strategic guidance in building the industry-leading SaaS and AI Agent Security for Global 2000.

Protecting SaaS Environments from AI Agent Risks

Obsidian is uniquely positioned to address the security risks created by autonomous AI agents in SaaS environments. At its core is the industry's most comprehensive SaaS threat dataset repository - over 500 curated real-world threat intelligence, enriched with browser-based activity capture and deep SaaS and AI integrations. This intelligence powers the Obsidian Knowledge Graph, a continuously learning model that unifies user and agent activity, identity privileges, and workflows across SaaS and SaaS managed agentic AI platforms into a single correlated view. This live map gives security teams real-time visibility and context to govern agentic AI usage and stop unauthorized agents and behavior inside SaaS environments, where risks emerge and propagate.

"In customer deployments, our continuously learning Knowledge Graph revealed that AI agents in SaaS environments were typically granted ten times more permissions than needed when mapped against real user privileges and entitlements - visibility only Obsidian can deliver," said Khanh Tran, Chief Product Officer at Obsidian. "By connecting popular AI platforms like Microsoft Copilot Studio, n8n, Salesforce Agentforce, and ChatGPT Enterprise with the Obsidian Knowledge Graph, security teams can finally see what agents are doing in SaaS. That intel means they can stop risks before they spread and empower users to innovate faster without sacrificing security or governance."

This product release is a major step forward in enabling enterprises securely scale AI agent development. Key capabilities in the latest release include:

-- Unmatched Visibility & Access Cleanup: Get a live inventory of every AI agent, including its privileges, SaaS connections, and actions, to eliminate excessive or risky access and enable full lifecycle oversight.

-- Continuous Observability & Compliance: Map AI agent access across SaaS and trace it to the data touched, with correlated audit trails that link entitlements directly to actions.

-- Prevent Misuse & Privilege Escalation: Detect and block agents attempting to exploit trust chains, misuse access, or escalate privileges before damage cascades across SaaS environments.

Current integrations to AI platforms include Microsoft Copilot Studio, ChatGPT Enterprise, Salesforce Agentforce and n8n, with more underway.

To help enterprises quickly understand and assess their exposure, Obsidian is offering a free assessment to its SaaS AI agent defense capabilities for 30 days. For more information and to sign up, visit www.obsidiansecurity.com

Additional Resources

-- Learn more about our latest capabilities

-- Read the launch blog for deeper coverage

-- Watch a demo

-- Follow us: X | LinkedIn

About Obsidian Security

Obsidian Security is the leading SaaS security platform, trusted by global enterprises like Snowflake, T-Mobile, and S&P Global. We protect over 250 global organizations, including many of the world's largest Fortune 1000 and Global 2000 companies, with data center availability in North America, EMEA, and APAC-Saudi Arabia coming soon. Backed by top investors including Greylock, Norwest Venture Partners, and IVP, we're closing a critical gap: securing the SaaS and AI tools that organizations rely on. Our platform reduces risk, detects and responds to threats, and prevents breaches at the source. Obsidian was built by leaders who redefined endpoint and identity security at CrowdStrike, Okta, Cylance, and Carbon Black.

For more information, visit www.obsidiansecurity.com

View source version on businesswire.com: https://www.businesswire.com/news/home/20250923529562/en/

Contact

[email protected]

© 2025 Business Wire, Inc.Disclaimer:This press release is not a document produced by AFP. AFP shall not bear responsibility for its content. In case you have any questions about this press release, please refer to the contact person/entity mentioned in the text of the press release.