Cyberhaven launches agent-focused AI security tools to govern shadow agents and protect enterprise data

New updates have been reported about Cyberhaven.

Cyberhaven has expanded its Unified AI & Data Security Platform with new Agentic AI Security capabilities designed to govern autonomous AI agents running across enterprise environments, addressing a major blind spot as AI shifts from chat interfaces to endpoint-based agents executing work. Citing Cyberhaven Labs research showing 509% growth in endpoint AI-native apps and a 357% increase in coding assistants over the past year, CEO Nishant Doshi said security must move to real-time controls at the point where AI agents act on sensitive data and systems.

At the core of the launch is Cyberhaven’s Agentic AI Security, which discovers and inventories AI agents and MCP servers, reconstructs full execution lifecycles including data accessed and actions taken, and enforces runtime policies with explanatory guardrails instead of simple blocking. The platform leverages Cyberhaven’s data lineage technology to connect every agent action to the underlying data’s origin, content, and destination, which SVP of Engineering Saro Subbiah said is essential for turning alerts into actionable investigations.

To operationalize these capabilities for security teams, Cyberhaven introduced an Analyst Plugin that embeds its security signals and workflows directly into AI assistants such as Claude Code, Codex, and other MCP-compatible clients. The plugin includes more than 40 pre-built security skills and over 20 specialized analysis agents that automate multi-step tasks like incident triage, GenAI data exposure reviews, user risk profiling, and executive-level reporting, and can also close duplicate tickets and implement triage decisions inside existing analyst workflows.

Cyberhaven also released a Standalone Browser Extension that extends its data loss prevention coverage to ChromeOS devices, contractor laptops, and other unmanaged endpoints without requiring an endpoint sensor. The extension traces uploads, downloads, and copy-paste operations with content inspection and is managed through the same console used for traditional endpoint deployments, giving CISOs a unified view of data flows across managed and unmanaged environments.

Strategically, these releases position Cyberhaven as an early mover in securing the rapidly expanding ecosystem of AI agents that often inherit employee identities and gain high-privilege access to production systems. By combining agent discovery, behavioral observability, and data-centric controls in a single platform, Cyberhaven aims to help enterprises embrace AI-driven productivity while reducing the risk of shadow agents, data exfiltration, and compliance violations, strengthening its competitive stance in the emerging AI security market.