Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Today, we’re launching BlueVoyant AI. In my first months as CEO, I’ve had the chance to meet with many of you. What struck me most is the scope and importance of what you’re protecting, and how seriously you carry that responsibility. What also came through clearly is that your vision for the future of security aligns with ours.

AI is already incorporated into most of your clients’ workflows. Employees are using chatbots and other built-in GenAI tools to draft emails, analyze data and automate work. The challenge? Much of that activity is happening outside your formal security controls, and that creates a new risk layer. For managed service providers (MSPs), the question is no longer whether to secure AI adoption for their clients, but how to evaluate the right AI security solution.

Security teams are dealing with a fundamentally different operating environment than they were a few years ago. AI-assisted development is rapidly pushing more code and infrastructure into production, and according to Datadog’s 2026 State of DevSecOps report, 40% of running services have an exploitable vulnerability.

If you’re like our team, the morning after the Claude Mythos announcement brought more questions than answers. Among them: “Serious question. Do customers still need SAST?” It’s a fair question if you stop at the headline. Claude Mythos, Anthropic’s frontier AI model currently gated to vetted partners through Project Glasswing, had autonomously identified thousands of zero-day vulnerabilities across major operating systems and browsers . No rule books, no checklists.

By mid-2026, the question is no longer whether AI belongs in the enterprise. It’s already embedded in daily work, supporting research, development, customer engagement, and operations. AI agents now act on behalf of employees, automate decisions, and interact directly with enterprise data and systems. This shift creates a new security challenge.

On April 27, 2026, a threshold was crossed that the internet had never hit before. Cloudflare Radar data confirmed that automated systems, such as bots, crawlers, and autonomous AI agents, now generate 57.4% of all HTTP requests for web content. Human traffic accounts for just 42.6%. What is accelerating this transformation is agentic AI: autonomous systems that browse, search, authenticate, and transact on behalf of users without any human intervention mid-task.

Employees are adopting AI tools, agents and automations faster than organizations can govern them. The real danger emerges when these tools connect directly to internal systems and sensitive data in the name of enhancing productivity. Among employees who use AI at work, a significant share do so without formal approval from IT or security teams, which is commonly called shadow AI.