What’s 🔥 in Enterprise IT/VC #491

Source: original

What’s 🔥 in Enterprise IT/VC #491

Why AI is not killing the cybersecurity industry, but expanding it exponentially - thoughts from RSA

Mar 28, 2026

Cybersecurity was front and center this week not only because of RSA, cybersecurity’s Super Bowl, but also because of this bombshell article from Fortune about Claude Mythos and the LiteLLM hack.

Let’s start with Anthropic

Wall St Engine@wallstengineCybersecurity names are trading lower after a reported leak around Anthropic’s new “Claude Mythos” model, which is already in testing and is believed by Anthropic to pose unprecedented cybersecurity risks. $CRWD $PANW $ZS $IGV 12:22 PM · Mar 27, 2026 · 206K Views51 Replies · 84 Reposts · 710 Likes

IMO, the market oversells and then corrects.

Ed Sim@edsimJust what we all need post RSA - with each new model release the market just gets bigger - attack surface expands, hackers are faster… Claude is not killing the cybersecurity industry, it’s expanding it exponentiallyDisclose.tv @disclosetvJUST IN - Leaked documents from Anthropic show that a new generation of super-strong models, "Claude Mythos," is already in testing with Anthropic believing it "poses unprecedented cybersecurity risks." — Fortune3:56 AM · Mar 27, 2026 · 2.35K Views1 Reply · 2 Reposts · 10 Likes

I actually think when you dig in the opportunity is even bigger.

Here’s the math that keeps cybersecurity investors up at night (in a good way). Every new model release expands the market from both directions simultaneously. On one side, the attack surface: more agents writing more code, more APIs, more autonomous workloads spinning up infrastructure no human reviewed.

On the other side, the attackers: AI-powered exploitation has compressed breakout times from 48 minutes to 27 seconds, zero-day development from 40 days to effectively minus-1 day, and social engineering now scales infinitely. Claude Mythos leaking the same week as RSA with Anthropic themselves calling it an “unprecedented cybersecurity risk” is the proof point. AI is not killing the cybersecurity industry. It’s expanding it exponentially. Every model release is the gift that keeps on giving to cybersecurity.

Now here’s a real-world example that captures this perfectly. LiteLLM is basically the standard adapter that almost every modern AI/agent stack uses to call LLMs (OpenAI, Anthropic, Grok, Gemini, etc.).

Snyk@snyksec@karpathy The LiteLLM dependency incident didn't "just happen" though. This is part of a larger campaign LiteLLM already extends to supply chain security fallout for other projects: snyk.ioHow a Poisoned Security Scanner Became the Key to Backdooring LiteLLM | Snyk5:16 PM · Mar 24, 2026 · 317K Views16 Replies · 153 Reposts · 1.06K Likes

If you dig into the Snyk post above, AI is the attacker. The threat actor, TeamPCP, used a component called hackerbot-claw. This tool leverages an AI agent (specifically openclaw) to automate attack targeting. This is noted by researchers as one of the first documented cases of an AI agent being used operationally in a supply chain attack.

But a human actually caught it, not AI! Despite the high-tech nature of the attack, it wasn’t a “security bot” that first raised the alarm. It was caught by a human developer, Callum McMahon at FutureSearch. Callum caught the LiteLLM compromise because the malicious payload caused a physical system crash (fork bomb) that bypassed automated scanners, which had been fooled by legitimate maintainer credentials and valid pip hashes.

The LiteLLM attack is the perfect case study for why a layered approach matters. LLMs alone aren’t enough for defense. Foundation models are stochastic by nature. They can find 500 vulnerabilities in a codebase, but were any of them real? Were they submitted? Were they prioritized? CISOs don’t just want probabilistic scanning. They want determinism. They want to know that when a vulnerability is flagged, it’s provably there and provably fixed.

The enterprises I spoke with at RSA are converging on a layered approach: LLM-powered discovery to cast a wide net across massive codebases at speed, combined with deterministic verification to confirm, prioritize, and remediate with certainty. Neither layer works alone. Stochastic scanning without determinism gives you noise. Determinism without AI-powered discovery gives you the same slow, manual process that can’t keep pace with agents writing code at machine speed. And as LiteLLM showed, add humans to the mix because these hackers are creating sophisticated exploits that still require human oversight and judgment.

The companies that nail this layered architecture - combining the breadth of AI with the precision of deterministic analysis and the judgment of humans - will own the next generation of application security.

Here are other things that stood out top of mind from RSA 2026:

Ed Sim@edsimFun times last nigh at our annual Sunday night @Boldstartvc RSA kickoff with @KeycardLabs @SurfAI and Gain Security. Packed house, great energy, too many discussions on agent security and burning tokens 🤣...and the week hasn't even started yet 🔥! 1:01 PM · Mar 23, 2026 · 31 Views1 Repost · 2 Likes

Top thoughts from RSA

  1. Agents, agents, agents. The biggest concern from CISOs I spoke with was agent identity and permissions - how to enable agents to have their own identity, how long-lived, how finely scoped. It’s all about goal-seeking behavior - agents pulling in whatever tool is necessary to realize a goal and doing it relentlessly. That blast radius scares the living daylights out of CISOs.

  2. Alert and permission fatigue. With giving agents fine-grained policy and control, human escalation still matters but will security practitioners or line of business owners drown in permission fatigue having to approve every new thing? So many different approaches to this at every org.

  3. Humans still matter. CISOs and founders were networking in full force. This is how deals still get done at RSA. Trust matters.

  4. LLMs alone aren’t enough for defense. One F500 CISO said what Anthropic showed them blew them away, but some of his team told me that while super cool to find 500 vulnerabilities, were any of them real and submitted? The foundational model tech is real but there’s still a long gap to help security teams not only find them but also fix them and collaborate on them. There’s room to bring a multilayer approach to AppSec as CISOs want determinism in addition to stochastic scanning.

  5. Every security company is going agentic. There was no founder I spoke with or who spoke on panels that didn’t discuss how important becoming a full agentic company was. Efficiency, speed, eating their own dog food. That said, a number of CISOs pointed out that as more security startups become agent-first, how do they know the code they’re generating is really secure when their engineers aren’t reviewing it with a fine-tooth comb? We may have some security issues next year as every security vendor becomes agent-first. The irony would be brutal.

  6. Nation states. Banks, military, utilities all discussed how activity has spiked in a massive way.

  7. Social engineering massively on the rise. Proofpoint’s CEO said they used to see 3-4 super sophisticated social engineering campaigns a day and now see a dozen per day. One company that stood out at the RSA Innovation Sandbox for top next-gen startups was Humanix (yes, I’m on the board 😄) which aims to help solve this problem with a human threat detection and response platform. Stop blaming humans with endless training and instead empower security teams.

  8. Breakout times are collapsing. AI-powered exploitation has compressed average breakout time from 48 minutes to 29 minutes, with the fastest recorded at 27 seconds for full automation. Attackers can now reason through unfamiliar environments instead of relying on manual expertise. When offense moves in seconds, defense can’t move in hours.

  9. Platform consolidation is accelerating, but the M&A sweet spot is below $1B. Palo Alto went from 4 products to 75 in 7.5 years, compressing operating margins from 20%+ down to 7% to fund it. Only 4 acquirers have $40B+ market cap in cybersecurity. Average security company trades at 5-7x revenue. For founders: build something great in a category adjacent to a platform player and the exit path is clear. But as Nikesh put it, you stop building product, you die.

Ed Sim@edsimOne 🔑 note for cybersecurity founders - the more you raise, the smaller your universe of potential acquirers As Nikesh pointed out: 💰 Sweet spot for cybersecurity M&A: companies below $1B valuation 📈Average security company trades 5-7x revenue 👀 Only 4 acquirers withEd Sim @edsimNew What's 🔥 #490. "The Law of Agent Cannibalism" - when the cost to add a feature is near zero and your valuation demands growth, you expand into everything. Super relevant as we head into RSA but also look at Loveable's move from this past week Why every company is becoming5:32 PM · Mar 23, 2026 · 541 Views3 LikesEd Sim@edsimKicking off Monday at RSA with @Piper_Sandler Cybersecurity CEO Summit where @Boldstartvc is a cosponsor Nikesh @PaloAltoNtwks fireside chat talking platformization of cybersecurity - went from 4 products to 75 products in 7.5 yrs 🤯 Data huge moat for AI pointing to 4:51 PM · Mar 23, 2026 · 1.35K Views2 Replies · 1 Repost · 12 Likes 10. Supply Chain Risk Has a New AI Vector: There’s a dangerous new supply chain attack surface emerging: compromised AI skills and plugins. Rapid adoption of third-party AI tools is creating unvetted entry points across the enterprise. Prompt-based malware generation and PowerShell script exfiltration can now happen without any external components. The largest financial institutions are already requiring vendors to show detailed compromise scenarios and safeguards before onboarding. For startups selling to enterprises: expect rigorous threat modeling as table stakes.

  1. The CISO Role Is Flipping from Gatekeeper to Enabler: The winning CISOs are positioning themselves as people who “make AI better,” not blockers. The shift is from “sanctioned only” to enablement with guardrails. New product categories like AI Control Towers are emerging for agent discovery and management. The metric that matters internally: high AI usage velocity + high governance percentage. For founders: frame your pitch around enabling more AI adoption, not just preventing bad outcomes.

  2. Cyber teams are shrinking and the KPIs are changing. Multiple founders on the JPM panels said security teams will get significantly smaller over the next 5 years while delivering better outcomes. The metric to watch: what percentage of your workforce is doing 80% of the job vs. managing automation doing 80% of the job. Revenue-to-headcount ratios are the new KPI. If you’re building in security, sell efficiency and automation, not headcount expansion.

Finally, the quote of the week came from friend Maor Friedman from F2 Capital. As we were running around from event to event, he looked at me and said, “Ed, you know who we are right? We’re forward deployed VCs. ” Yes, that about sums up the week!

As always, 🙏🏼 for reading and please share with your friends and colleagues!

Scaling Startups

👇🏼 spot on advice for later stage cos from David George at a16z: There are only two paths left for software

Path one: accelerate growth off new AI products

Accelerating growth with new AI products does not mean bolting on chatbots or copilot interfaces, attached to the old SKU list.

It means new products that can move the company’s total growth rate by 10 points within 12 months. And, just as importantly, it means you need to speedrun rebuilding your company - including your executive team - so that if you do find product market fit, you will actually capitalize on the opportunity.

🙏🏻 to be on this shortlist of inception investors…

Ben Lang@benlnUpdated my shortlist: • @tmrohan - Otherwise Fund • @lennysan - Lenny's newsletter • @cyantist - Long Journey • @brackin - Gradient • @KyleHParrish - early Figma • @vsodera - Supercharge • @DStrachman - 1517 • @alanaagoyal - basecase • @edsim - Boldstart • @fubini -Ben Lang @benlnWho are the pre-seed / seed investors every founder should want on their cap table these days? Refreshing my shortlist.6:26 PM · Mar 23, 2026 · 166K Views59 Replies · 70 Reposts · 1.03K Likes

so many 💎 in here from Farhan VP Eng Shopify on getting your org wired with agents but one of 🔑 is think before you just prompt!

Farhan Thawar@fnthawarFun convo with @bdeeter and the engineering leadership across the @BessemerVP portfolio A few things to add * I made the up the 20% number. It's clear that some folks at P90 in engineering are seeing 10X or higher gains, but the floor is definitely raising for all * ProductionBessemer @BessemerVPWe had @bdeeter sit down with @fnthawar, @Shopify's Head of Eng, to unpack how they've transformed into an AI-first company since adopting GitHub Copilot in 2021 — well before the ChatGPT era. The results? A 20% productivity increase (conservative estimate) and a cultural shift10:52 AM · Mar 23, 2026 · 1.88K Views2 Replies · 13 Likes

🤔

Naval@navalA lot of software is about to get a lot better, right before it becomes unnecessary.7:42 PM · Mar 23, 2026 · 717K Views883 Replies · 1.1K Reposts · 16.5K Likes

what’s happening at YC

Nakul Kelkar@MaruPelkarFew observations from YC W26 Alumni day 1. Founders are optimizing for speed rather than amount - Everyone wants to close fast snd get back to building and selling. 2. Rounds are either 4 on 40 mill, 3 on 30 mill, 2.5 on 20 mill caps 3. Outliers are getting oversubscribed 2:23 AM · Mar 23, 2026 · 106K Views29 Replies · 27 Reposts · 519 Likes

Enterprise Tech

the age old debate - everyone has their own vertical model now starting with Cursor and now Intercom and Decagon and …is the juice worth the squeeze? The fundamental debate is with all of that data does it make sense to take an open source model and have a team to build your own or will the latest big model release from the top LLM builders just destroy any gains that fine tuning. In Intercom’s case, it now uses Apex 1.0, a model they fine-tuned (post-trained) from an unnamed open-weights base mode - team of 60 built for a year…

Eoghan McCabe@eoghanhttps://t.co/I2Hf40EpIt3:59 PM · Mar 26, 2026 · 305K Views55 Replies · 70 Reposts · 455 LikesEoghan McCabe@eoghan@petergyang It was a subset of the team and I think they were working on it for the better part of a year. @fergal_reid?1:52 AM · Mar 27, 2026 · 744 Views1 Reply

Clem from Hugging Face weighs in

clem 🤗@ClementDelangueAfter @Pinterest @Airbnb @NotionHQ @cursor_ai, today it’s @eoghan @intercom publicly sharing that they’re finding it better, cheaper, faster to use and train open models themselves rather than use APIs for many tasks. And hundreds of other companies are doing the same without 6:15 PM · Mar 26, 2026 · 218K Views69 Replies · 153 Reposts · 1.33K Likes

Finally Rahul Goyal, head of applied AI at Ramp, argues that rapid AI advancements like larger context windows and cheaper tokens will commoditize low-level optimizations, rendering efforts in context reduction, retrieval tweaks, or custom multi-agent systems obsolete for startups. Human-centric areas are more durable such as intuitive product design, seamless integrations with existing tools, and user training to leverage AI effectively in real workflows.

rahul@rahulgsseems obvious but: things that are changing rapidly: 1. context windows 2. intelligence / ability to reason within context 3. performance on any given benchmark 4. cost per token things that are not changing much: 1. humans 2. human behavior, preferences, affinities 3. tools,5:28 PM · Mar 25, 2026 · 357K Views107 Replies · 224 Reposts · 3.17K Likes

why open source matters - NemoClaw, hardened version of OpenClaw from Nvidia, running Qwen locally and sandboxed!

Niels Rogge@NielsRoggeSo cool!! I'm running @nvidia's NemoClaw with Qwen3.5-27B entirely locally via Telegram. No API costs, no data being sent to anyone NemoClaw is a security sandbox built on top of @openclaw that lets you restrict the files and networks your lobster can access. I'm running the 1:33 PM · Mar 26, 2026 · 198K Views110 Replies · 164 Reposts · 1.64K Likes

this is the future of software development, self maintaining software, reminds me a lot of what OpenClaw already does to itself…

Ramp Labs@RampLabsWe built a codebase that maintains itself. An agent instruments every pull request, triages alerts, and pushes fixes autonomously. The system runs on a thousand AI-generated monitors, one for every 75 lines of code.7:54 PM · Mar 23, 2026 · 233K Views30 Replies · 40 Reposts · 1K Likes

Claude down again - for over 5 hours and also imposed rate limits with no warning…we just don’t have enough compute!

Andras Bacsai@heyandrasAs a Max 20x user (and sponsored OSS dev) I hit the limit in an hour (or less). I knew this was coming sooner or later, but the execution is the worst it could be. I don't often lose trust in SaaS, but @AnthropicAI make it easy. Luckily I already had a plan for this. 🤘Thariq @trq212To manage growing demand for Claude we're adjusting our 5 hour session limits for free/Pro/Max subs during peak hours. Your weekly limits remain unchanged. During weekdays between 5am–11am PT / 1pm–7pm GMT, you'll move through your 5-hour session limits faster than before.1:30 PM · Mar 27, 2026 · 94.6K Views61 Replies · 27 Reposts · 1.01K Likes

turns out you still need people for that pesky last mile in the enterprise 🤷🏻‍♂️

Ed Sim@edsimOpenAI doubling workforce for enterprise Yes, the last mile in the enterprise is the longest and messiest - you still need people “OpenAI would also step up recruitment of specialists to focus on what the company calls “technical ambassadorship”, helping businesses make better 7:54 PM · Mar 21, 2026 · 2.42K Views4 Replies · 6 Reposts · 20 Likes

🤯

Markets & Mayhem@Mayhem4Markets🚨 Google is issuing a new, more urgent warning about quantum computing. The company claims that Q-Day, where many forms of encryption could be broken by quantum computers, is coming sooner than thought. 5:49 PM · Mar 27, 2026 · 34K Views57 Replies · 109 Reposts · 470 Likes

💯

BuccoCapital Bloke@buccocapitalPeople asked why I was so blown away by Claude Cowork, so I thought I’d puke some quick thoughts out The true promise of Claude Cowork, and ultimately any sort of agentic, AI powered workflow tool is to realize the perfect embodiment of the organization as described by Peter12:08 AM · Mar 27, 2026 · 149K Views51 Replies · 78 Reposts · 1.33K Likes

just the beginning of AI efficiency gains, frankly most of the layoffs from companies have blamed AI, wait till the AI really is implemented like this 👇🏻

Official Layoff@LayoffAISnowflake just replaced its entire technical writing team with AI. Not reduced. Replaced. All ~70 of them. If your job can be documented, your job can be automated.Pareekh Jain @pareekhjainSnowflake laid off their entire technical writer team this week of around 70 people, replacing them with AI. https://t.co/W6DRE4kaaT8:46 PM · Mar 22, 2026 · 81.9K Views37 Replies · 74 Reposts · 488 Likes

Markets

Walmart hits record highs while Saks goes bankrupt, AI is accelerating the brutal K-shaped split…but who actually wins?

Brian Sozzi@BrianSozziBlackrock CEO Larry Fink with an AI warning in his new annual shareholder letter: "But history suggests that transformative technologies create enormous value—and much of that value accrues to the companies that build and deploy them, and to the investors who own them. The10:32 AM · Mar 23, 2026 · 6.4K Views3 Replies · 5 Reposts · 32 Likes

smart or desperate to catch up to Anthropic?

Andrew Curran@AndrewCurran_OpenAl is offering private-equity firms a guaranteed minimum return of 17.5%, as well as early access to models not yet in public release. 11:34 AM · Mar 23, 2026 · 4.28M Views331 Replies · 267 Reposts · 3.14K Likes

speaking of PE, Thoma Bravo sharing its world view - sure its cheaper than before while fundamentals have improved but terminal value is so much less certain due to AI disruption

from Managing Partner Holden Spaht on his LI post:

AI disruption is real and profound, but not all software is equally exposed to the downside risk. Companies with generalist knowledge domains, simplified workflows, light regulatory oversight and limited switching costs are indeed more vulnerable. These types of firms don’t match our investment thesis, and we believe they have no place in our portfolio.

Marc Lehman@markflowchatterThoma Bravo Software presentation (talking their book or drek) Worth reading.... 3:20 PM · Mar 26, 2026 · 53.3K Views6 Replies · 45 Reposts · 400 Likes

AI is disrupting hedge funds as well…

Boring_Business@BoringBiz_This news article is absolutely insane and probably a good glimpse into what the future of hedge funds look like in an AI driven world Coatue backed hedge fund, Epicenter, is using AI to replace massive teams of hedge fund analysts Their AI bot, Eve, is plugged into every part 2:56 PM · Mar 27, 2026 · 42.4K Views12 Replies · 16 Reposts · 365 Likes