Perplexity Comet, agentic blabbering, and the shift-left failure

IBM Technology · Beginner ·🤖 AI Agents & Automation ·4mo ago

Key Takeaways

The video discusses AI agent security concerns, specifically the issue of agentic blabbering, and how it can be used against the agent, as well as the failure of shift-left security approaches and the rise of AI-generated malware.

Original Description

Listen to our latest episode, Can IAM handle AI? → https://ibm.biz/Bdpqkb Does your AI agent talk too much? It’s not just an annoying habit—it’s a security concern. On this episode of Security Intelligence, Sridhar Muppidi, Claire Nuñez and Dave Bales join me to discuss Guardio’s research into “agentic blabbering,” and how attacks can use an agent’s reasoning process against it. In experiments with the agentic Perplexity Comet browser, Guardio researchers were able to design foolproof phishing websites just by listening to agent’s running monologue as it traversed the web. What does it mean for agentic security when sophisticated AI reasoning processes can be weaponized? Then, we chat about Microsoft Azure CTO Mark Russinovich’s discovery that Claude Opus can reverse engineer 40-year-old (practically ancient, by software standards) code. Did AI just expand the attack surface to include every compiled binary ever written? Plus: Contrast Security CISO David Lindner claims that shift left has failed. Dramatic increases in the exploitation go vulnerable code—confirmed by the IBM Threat Intelligence Index 2026, among many other reports—suggest he might be onto something. But is there more to the story? And, finally, we dig into two new pieces of research from IBM X-Force: One about a new piece of AI-generated malware, and another about reframing how we think about authentication. All that and more on Security Intelligence. 00:00 -- Introduction 1:19 -- Perplexity Comet’s “agentic blabbering” 13:06 -- AI resurrects old vulnerabilities 21:28 -- Did shift left fail? 30:05 -- AI slop and the post-auth perimeter The opinions expressed in this podcast are solely those of the participants and do not necessarily reflect the views of IBM or any other organization or entity. Read more about “Slopoly” → https://ibm.biz/Bdpqk8 #PerplexityComet #AIagentsecurity #DevOps
Watch on YouTube ↗ (saves to browser)
Sign in to unlock AI tutor explanation · ⚡30

The video discusses the security concerns related to AI agents, including agentic blabbering, and how it can be used against the agent, as well as the failure of shift-left security approaches and the rise of AI-generated malware. It also explores the implications of these developments on the field of cybersecurity.

Key Takeaways
  1. Investigate the concept of agentic blabbering and its implications for AI agent security
  2. Analyze the potential vulnerabilities of AI agents
  3. Develop strategies to mitigate AI-related security risks
  4. Explore the failure of shift-left security approaches and its implications
  5. Investigate the rise of AI-generated malware and its potential impact on cybersecurity
💡 The increasing sophistication of AI agents and their potential to be used against themselves or to exploit vulnerabilities in other systems poses significant security concerns that need to be addressed.

Related Reads

📰
I built an open-source intelligence workspace inspired by Palantir
Learn how to build an open-source intelligence workspace inspired by Palantir and improve your skills in AI, software engineering, and data science
Dev.to AI
📰
How I Built ContextForge - Giving Your AI a Complete Project Briefing Before Every Session
Learn how ContextForge automates AI briefing for debug sessions, saving time and improving efficiency
Dev.to AI
📰
I Rewrote a OneNote MCP Server in TypeScript — Here's What I Learned About Microsoft Graph Auth
Rewriting a OneNote MCP server in TypeScript reveals key lessons about Microsoft Graph Auth for AI-assisted note access
Dev.to AI
📰
Your First AI Agent in 30 Minutes
Create your first AI agent in 30 minutes using Python and learn how to apply it to various tasks such as customer support and lead qualification.
Dev.to AI

Chapters (5)

Introduction
1:19 Perplexity Comet’s “agentic blabbering”
13:06 AI resurrects old vulnerabilities
21:28 Did shift left fail?
30:05 AI slop and the post-auth perimeter
Up next
What is AI Agents Swarm Explained with Examples
VLR Software Training
Watch →