Zenity Blog
Zenity Labs: The Bleeding Edge
Zenity Labs: The Bleeding Edge
At Zenity, we like to say we don't only exist on the bleeding edge; we are the bleeding edge. It's a defensible...
AI Agents Are Already Running the Enterprise. Security Hasn't Caught Up.
For years, conversations about AI security risks were framed as forward-looking. Organizations were told to prepare...
The OWASP Top 10 for Agentic Applications: A Milestone for the Future of AI Security
The OWASP GenAI Security Project has officially released its Top 10 for Agentic Applications, the first industry-standard...
Inside the Agent Stack: Securing Agents in Amazon Bedrock AgentCore
In the first installment of our Inside the Agent Stack series, we examined the design and security posture of agents...
Inside the Agent Stack: Securing Azure AI Foundry-Built Agents
This blog kicks off our new series, Inside the Agent Stack, where we take you behind the scenes of today’s most...
When “Secure by Design” Isn’t Enough: A Blind Spot in Power Platform Security Access Controls
Security Groups play a pivotal role in tenant governance across platforms like Entra, Power Platform, and SharePoint....
Validating the Mission: Zenity Labs Research Cited in Gartner’s AI Platform Analysis
Research is what turns cybersecurity from a reactive scramble into a proactive discipline. It’s how security teams...
How Copilot Studio Agents Can Slip Past Power Platform’s Firewall
Microsoft’s Power Platform recently introduced an IP-based Firewall feature designed to restrict access to environments...
The Future of Enterprise AI Agents Demands Trust: Zenity Included in Forrester's "The AI Governance Solutions Landscape, Q2 2025"
As enterprises rapidly adopt AI Agents to enhance operations, the imperative for robust governance and security...
Bypassing Tenant Isolation in Microsoft Power Platform: A Security Loophole You Should Know
Microsoft Power Platform, specifically Power Automate and Copilot Studio, makes it easy for organizations to quickly...
Building Apps at Scale in Power Platform? Not for the Faint of Heart… or CoE Security
Introduction Enterprises are racing to adopt AI copilots and low-code/no-code platforms to innovate and maximize...
Inherent Data Leakage in Microsoft Fabric Business-Led Development
Microsoft Fabric is an end-to-end analytics and data platform that covers a wide range of functionality, including...
Potential Data Exposure in ServiceNow: Challenges for Citizen Developers and Security Teams
In a rapidly evolving digital landscape, data security has become a paramount concern within the AppSec community....
Microsoft Power Platform DLP Bypass Uncovered – Finding #5 – Parent and Child Flow Execution
Analysis of Microsoft Power Platform’s security features revealed limitations that could expose organizations...
Microsoft Power Platform DLP Bypass Uncovered – Finding #4 – Unblockable connectors
Hello everyone! I’m Yuval Adler, Customer Success Director at Zenity. I’m inviting you to read my blog series...
The Cross-Tenant Power Platform Connectors Vulnerability – Are You Safe Now?
What Happened Last week, on March 31st, NetSPI researchers announced that they found a cross-tenant Azure vulnerability...
Microsoft Power Platform DLP Bypass Uncovered – Finding #3 – Custom Connectors
Hello everyone! I’m Yuval Adler, Customer Success Director at Zenity. I’m inviting you to read my blog series...
Microsoft Power Platform DLP Bypass Uncovered- Finding #2 – HTTP calls
Hello everyone! I’m Yuval Adler, Customer Success Director at Zenity. I’m inviting you to read my blog series...
Microsoft Power Platform DLP Bypass Uncovered- Finding #1
Hello everyone! I’m Yuval Adler, Customer Success Director at Zenity. I’m inviting you to read my blog series...
ZAPESCAPE: Organization-wide control over Code by Zapier
In the middle of March 2022, Zenity research team discovered a sandbox-escape vulnerability in Code by Zapier,...
ZAPESCAPE: Vulnerability Disclosure
Date: March 16th 2022 Severity: High Security impact: Privilege Escalation, Data Leakage, Data Manipulation Intro This...
Zapier Storage Exposes Sensitive Customer Data Due to Poor User Choices
Zenity research team has recently discovered a potential customer data leakage in Storage by Zapier, a service...
The Microsoft Power Apps Portal Data Leak Revisited: Are You Safe Now?
What happened In late August 2021, a major data leak exposed where 38 million private records through Microsoft’s...
Secure Your Agents
We’d love to chat with you about how your team can secure and govern AI Agents everywhere.
Get a Demo