Visa will offer an inside look at Project Glasswing and how the most powerful agentic models are changing enterprise security at VB Transform 2026
Our take
The rapid evolution of generative AI is creating both unprecedented opportunities and emerging threats, a reality Visa is confronting head-on through Project Glasswing. The immediate security implications of advanced AI models became strikingly clear to Visa's technology team during initial testing of Anthropic’s Mythos model, highlighting a widening enterprise security gap. As demonstrated by recent developments like OpenAI unveiling its first custom AI inference chip, Jalapeño, with Broadcom OpenAI unveils first custom AI inference chip, Jalapeño, with Broadcom — and its development was sped-up with OpenAI's own models, the ability to accelerate AI development also amplifies the potential for misuse. This asymmetry – where attackers leverage increasingly sophisticated AI tools while defenders lag – demands a fundamental shift in enterprise security strategies. The vulnerability observed within weeks of Project Glasswing’s launch underscores the urgency of this transition.
The core of the challenge, as articulated by Visa’s Rajat Taneja, lies in the automation of attacks facilitated by AI agents. Cisco’s State of AI Security 2026 report corroborates this, noting threat actors can now operate “at a scale and speed that human teams cannot match.” This isn’t merely about faster exploitation; it’s about autonomous reconnaissance and vulnerability discovery, effectively removing human intervention from significant portions of the attack lifecycle. Visa’s proactive response – building abstraction layers, observability tools, and data guardrails – represents a necessary step towards mirroring this automation defensively. The open-source AI-driven security framework they’ve released is a particularly interesting development, suggesting a collaborative approach to addressing a shared problem. It’s also worth noting the broader implications for organizations already grappling with AI infrastructure complexities, as Intuit is demonstrating with its own AI infrastructure rebuild Intuit will show off how it rebuilt its AI infrastructure to support fast and complex tasks at VB Transform 2026.
The need for autonomous defenses isn't a future aspiration; it's a present imperative. Visa's Project Glasswing serves as a sobering case study, illustrating how quickly AI can be weaponized and the vulnerabilities it exposes within established systems. The upcoming VB Transform event, featuring insights from Visa and other industry leaders like Brex and Mastercard, highlights the growing focus on agentic AI security. This signifies a move beyond reactive patching and towards proactive, AI-powered security architectures that can anticipate and mitigate threats in real-time. The panel discussion on permissioning, sandboxing, and human-in-the-loop controls underscores the importance of layered defenses, acknowledging that even the most advanced AI systems require careful oversight and governance.
Ultimately, Project Glasswing's findings force a critical re-evaluation of enterprise security posture. The traditional model of relying primarily on human analysts and static defenses is no longer sufficient in an era of autonomous attacks. The question now becomes: how rapidly can organizations adapt and build the necessary infrastructure and expertise to stay ahead of the curve? The proliferation of AI agents across various business functions, as Amazon is exploring with its trustworthy AI agent framework Amazon will present its framework for engineering trustworthy AI agents at VB Transform 2026, necessitates a parallel investment in robust, AI-powered security measures – a challenge that will define the future of enterprise risk management.
The security implications of advanced AI models were immediately clear to Visa’s technology team when they began testing Anthropic’s Mythos model.
Just weeks into Project Glasswing, the team observed how quickly attackers can identify and weaponize vulnerabilities in critical code bases, creating security risks, explained Rajat Taneja, Visa’s president of technology, during a call to prepare for his session at VB Transform 2026, VentureBeat’s upcoming agentic AI event.
Visa is among the companies selected to test Anthropic’s upcoming model — a version of which was released June 9 but abruptly disabled days later to comply with U.S. government directives.
The findings of Project Glasswing put a spotlight on widening enterprise security gaps and the vulnerabilities malicious actors can take advantage of.
"Security has always been important, but currently, in the age of AI, is going to be even more important because the attacks become autonomous,” Taneja told VentureBeat. “The defenses have to become autonomous. And we are not there. And there's an asymmetry there, which is a very big risk for the world."
Threat actors now have access to powerful AI agents that can work 24/7, “operating at a scale and speed that human teams cannot match, automating the tedious reconnaissance and exploitation phases of a cyberattack,” according to Cisco’s State of AI Security 2026 report. Amy Chang, Cisco’s head of AI threat intelligence and security research, will also be a speaker at VB Transform.
To mitigate these risks, Visa is building its own abstraction layers, observability, and data guardrails to secure its autonomous commerce frameworks. The payment services giant also rolled out an open‑source, AI-driven security framework that turns vulnerability discovery and remediation into a structured, repeatable pipeline.
Their work represents a shift enterprise IT teams must make to protect enterprise systems against threats posed by bad actors wielding autonomous agents. Taneja will share these insights and valuable technical details during his session at VB Transform, titled Inside Project Glasswing and Mythos: Securing the agentic future today, on July 15.
Other agentic AI security-focused sessions at VB Transform include:
CrabTrap: How Brex built an open source proxy to secure OpenClaw’s critical flaws for everyone with Brex co-founder and CEO Pedro Franceschi;
When AI Agents have wallets: Building the trust layer for autonomous B2B commerce with Mastercard’s Chief AI and Data Officer, Greg Ulrich;
Expedia's blueprint for building autonomous agents for high-stakes transactional systems with Chief AI and Data Officer Xavier Amatrain; and
Securing agentic AI: A playbook for permissioning, sandboxing, and human-in-the-loop controls, a panel discussion with AI security leaders from Intuit, Box and Cisco.
Interested in attending VB Transform 2026? Register here. A select number of complimentary passes are also available to senior technology leaders. Contact us to get yours.
Read on the original site
Open the publisher's page for the full experience