What’s 🔥 in Enterprise IT/VC #491

Why AI is not killing the cybersecurity industry, but expanding it exponentially - thoughts from RSA

Mar 28, 2026

Cybersecurity was front and center this week not only because of RSA, cybersecurity’s Super Bowl, but also because of this bombshell article from Fortune about Claude Mythos and the LiteLLM hack.

Let’s start with Anthropic

Wall St Engine@wallstengine

Cybersecurity names are trading lower after a reported leak around Anthropic’s new “Claude Mythos” model, which is already in testing and is believed by Anthropic to pose unprecedented cybersecurity risks. $CRWD $PANW $ZS $IGV

12:22 PM · Mar 27, 2026 · 206K Views

51 Replies · 84 Reposts · 710 Likes

IMO, the market oversells and then corrects.

Ed Sim@edsim

Just what we all need post RSA - with each new model release the market just gets bigger - attack surface expands, hackers are faster… Claude is not killing the cybersecurity industry, it’s expanding it exponentially

Disclose.tv @disclosetv

JUST IN - Leaked documents from Anthropic show that a new generation of super-strong models, "Claude Mythos," is already in testing with Anthropic believing it "poses unprecedented cybersecurity risks." — Fortune

3:56 AM · Mar 27, 2026 · 2.35K Views

1 Reply · 2 Reposts · 10 Likes

I actually think when you dig in the opportunity is even bigger.

Here’s the math that keeps cybersecurity investors up at night (in a good way). Every new model release expands the market from both directions simultaneously. On one side, the attack surface: more agents writing more code, more APIs, more autonomous workloads spinning up infrastructure no human reviewed.

On the other side, the attackers: AI-powered exploitation has compressed breakout times from 48 minutes to 27 seconds, zero-day development from 40 days to effectively minus-1 day, and social engineering now scales infinitely. Claude Mythos leaking the same week as RSA with Anthropic themselves calling it an “unprecedented cybersecurity risk” is the proof point. AI is not killing the cybersecurity industry. It’s expanding it exponentially. Every model release is the gift that keeps on giving to cybersecurity.

Now here’s a real-world example that captures this perfectly. LiteLLM is basically the standard adapter that almost every modern AI/agent stack uses to call LLMs (OpenAI, Anthropic, Grok, Gemini, etc.).

Snyk@snyksec

@karpathy The LiteLLM dependency incident didn't "just happen" though. This is part of a larger campaign LiteLLM already extends to supply chain security fallout for other projects:

snyk.io

How a Poisoned Security Scanner Became the Key to Backdooring LiteLLM | Snyk

5:16 PM · Mar 24, 2026 · 317K Views

16 Replies · 153 Reposts · 1.06K Likes

If you dig into the Snyk post above, AI is the attacker. The threat actor, TeamPCP, used a component called hackerbot-claw. This tool leverages an AI agent (specifically openclaw) to automate attack targeting. This is noted by researchers as one of the first documented cases of an AI agent being used operationally in a supply chain attack.

But a human actually caught it, not AI! Despite the high-tech nature of the attack, it wasn’t a “security bot” that first raised the alarm. It was caught by a human developer, Callum McMahon at FutureSearch. Callum caught the LiteLLM compromise because the malicious payload caused a physical system crash (fork bomb) that bypassed automated scanners, which had been fooled by legitimate maintainer credentials and valid pip hashes.

The LiteLLM attack is the perfect case study for why a layered approach matters. LLMs alone aren’t enough for defense. Foundation models are stochastic by nature. They can find 500 vulnerabilities in a codebase, but were any of them real? Were they submitted? Were they prioritized? CISOs don’t just want probabilistic scanning. They want determinism. They want to know that when a vulnerability is flagged, it’s provably there and provably fixed.

The enterprises I spoke with at RSA are converging on a layered approach: LLM-powered discovery to cast a wide net across massive codebases at speed, combined with deterministic verification to confirm, prioritize, and remediate with certainty. Neither layer works alone. Stochastic scanning without determinism gives you noise. Determinism without AI-powered discovery gives you the same slow, manual process that can’t keep pace with agents writing code at machine speed. And as LiteLLM showed, add humans to the mix because these hackers are creating sophisticated exploits that still require human oversight and judgment.

The companies that nail this layered architecture - combining the breadth of AI with the precision of deterministic analysis and the judgment of humans - will own the next generation of application security.

Here are other things that stood out top of mind from RSA 2026:

Ed Sim@edsim

Fun times last nigh at our annual Sunday night @Boldstartvc RSA kickoff with @KeycardLabs @SurfAI and Gain Security. Packed house, great energy, too many discussions on agent security and burning tokens 🤣...and the week hasn't even started yet 🔥!

1:01 PM · Mar 23, 2026 · 31 Views

1 Repost · 2 Likes

Top thoughts from RSA

Agents, agents, agents. The biggest concern from CISOs I spoke with was agent identity and permissions - how to enable agents to have their own identity, how long-lived, how finely scoped. It’s all about goal-seeking behavior - agents pulling in whatever tool is necessary to realize a goal and doing it relentlessly. That blast radius scares the living daylights out of CISOs.
Alert and permission fatigue. With giving agents fine-grained policy and control, human escalation still matters but will security practitioners or line of business owners drown in permission fatigue having to approve every new thing? So many different approaches to this at every org.
Humans still matter. CISOs and founders were networking in full force. This is how deals still get done at RSA. Trust matters.
LLMs alone aren’t enough for defense. One F500 CISO said what Anthropic showed them blew them away, but some of his team told me that while super cool to find 500 vulnerabilities, were any of them real and submitted? The foundational model tech is real but there’s still a long gap to help security teams not only find them but also fix them and collaborate on them. There’s room to bring a multilayer approach to AppSec as CISOs want determinism in addition to stochastic scanning.
Every security company is going agentic. There was no founder I spoke with or who spoke on panels that didn’t discuss how important becoming a full agentic company was. Efficiency, speed, eating their own dog food. That said, a number of CISOs pointed out that as more security startups become agent-first, how do they know the code they’re generating is really secure when their engineers aren’t reviewing it with a fine-tooth comb? We may have some security issues next year as every security vendor becomes agent-first. The irony would be brutal.
Nation states. Banks, military, utilities all discussed how activity has spiked in a massive way.
Social engineering massively on the rise. Proofpoint’s CEO said they used to see 3-4 super sophisticated social engineering campaigns a day and now see a dozen per day. One company that stood out at the RSA Innovation Sandbox for top next-gen startups was Humanix (yes, I’m on the board 😄) which aims to help solve this problem with a human threat detection and response platform. Stop blaming humans with endless training and instead empower security teams.
Breakout times are collapsing. AI-powered exploitation has compressed average breakout time from 48 minutes to 29 minutes, with the fastest recorded at 27 seconds for full automation. Attackers can now reason through unfamiliar environments instead of relying on manual expertise. When offense moves in seconds, defense can’t move in hours.
Platform consolidation is accelerating, but the M&A sweet spot is below $1B. Palo Alto went from 4 products to 75 in 7.5 years, compressing operating margins from 20%+ down to 7% to fund it. Only 4 acquirers have $40B+ market cap in cybersecurity. Average security company trades at 5-7x revenue. For founders: build something great in a category adjacent to a platform player and the exit path is clear. But as Nikesh put it, you stop building product, you die.
Ed Sim@edsim
One 🔑 note for cybersecurity founders - the more you raise, the smaller your universe of potential acquirers As Nikesh pointed out: 💰 Sweet spot for cybersecurity M&A: companies below $1B valuation 📈Average security company trades 5-7x revenue 👀 Only 4 acquirers with
Ed Sim @edsim
New What's 🔥 #490. "The Law of Agent Cannibalism" - when the cost to add a feature is near zero and your valuation demands growth, you expand into everything. Super relevant as we head into RSA but also look at Loveable's move from this past week Why every company is becoming
5:32 PM · Mar 23, 2026 · 541 Views
3 Likes
Ed Sim@edsim
Kicking off Monday at RSA with @Piper_Sandler Cybersecurity CEO Summit where @Boldstartvc is a cosponsor Nikesh @PaloAltoNtwks fireside chat talking platformization of cybersecurity - went from 4 products to 75 products in 7.5 yrs 🤯 Data huge moat for AI pointing to
4:51 PM · Mar 23, 2026 · 1.35K Views
2 Replies · 1 Repost · 12 Likes
Supply Chain Risk Has a New AI Vector: There’s a dangerous new supply chain attack surface emerging: compromised AI skills and plugins. Rapid adoption of third-party AI tools is creating unvetted entry points across the enterprise. Prompt-based malware generation and PowerShell script exfiltration can now happen without any external components. The largest financial institutions are already requiring vendors to show detailed compromise scenarios and safeguards before onboarding. For startups selling to enterprises: expect rigorous threat modeling as table stakes.
The CISO Role Is Flipping from Gatekeeper to Enabler: The winning CISOs are positioning themselves as people who “make AI better,” not blockers. The shift is from “sanctioned only” to enablement with guardrails. New product categories like AI Control Towers are emerging for agent discovery and management. The metric that matters internally: high AI usage velocity + high governance percentage. For founders: frame your pitch around enabling more AI adoption, not just preventing bad outcomes.
Cyber teams are shrinking and the KPIs are changing. Multiple founders on the JPM panels said security teams will get significantly smaller over the next 5 years while delivering better outcomes. The metric to watch: what percentage of your workforce is doing 80% of the job vs. managing automation doing 80% of the job. Revenue-to-headcount ratios are the new KPI. If you’re building in security, sell efficiency and automation, not headcount expansion.

Finally, the quote of the week came from friend Maor Friedman from F2 Capital. As we were running around from event to event, he looked at me and said, “Ed, you know who we are right? We’re forward deployed VCs.” Yes, that about sums up the week!

As always, 🙏🏼 for reading and please share with your friends and colleagues!

Thanks for reading What's Hot 🔥 in Enterprise IT/VC! This post is public so feel free to share it.

Scaling Startups

#👇🏼 spot on advice for later stage cos from David George at a16z: There are only two paths left for software

Path one: accelerate growth off new AI products
Accelerating growth with new AI products does not mean bolting on chatbots or copilot interfaces, attached to the old SKU list.
It means new products that can move the company’s total growth rate by 10 points within 12 months. And, just as importantly, it means you need to speedrun rebuilding your company - including your executive team - so that if you do find product market fit, you will actually capitalize on the opportunity.

a16z

There are only two paths left for software

America | Tech | Opinion | Culture | Charts…

5 days ago · 155 likes · 7 comments · David George

#🙏🏻 to be on this shortlist of inception investors…

Ben Lang@benln

Updated my shortlist: • @tmrohan - Otherwise Fund • @lennysan - Lenny's newsletter • @cyantist - Long Journey • @brackin - Gradient • @KyleHParrish - early Figma • @vsodera - Supercharge • @DStrachman - 1517 • @alanaagoyal - basecase • @edsim - Boldstart • @fubini -

Ben Lang @benln

Who are the pre-seed / seed investors every founder should want on their cap table these days? Refreshing my shortlist.

6:26 PM · Mar 23, 2026 · 166K Views

59 Replies · 70 Reposts · 1.03K Likes

#so many 💎 in here from Farhan VP Eng Shopify on getting your org wired with agents but one of 🔑 is think before you just prompt!

Farhan Thawar@fnthawar

Fun convo with @bdeeter and the engineering leadership across the @BessemerVP portfolio A few things to add * I made the up the 20% number. It's clear that some folks at P90 in engineering are seeing 10X or higher gains, but the floor is definitely raising for all * Production

Bessemer @BessemerVP

We had @bdeeter sit down with @fnthawar, @Shopify's Head of Eng, to unpack how they've transformed into an AI-first company since adopting GitHub Copilot in 2021 — well before the ChatGPT era. The results? A 20% productivity increase (conservative estimate) and a cultural shift

10:52 AM · Mar 23, 2026 · 1.88K Views

2 Replies · 13 Likes

#🤔

Naval@naval

A lot of software is about to get a lot better, right before it becomes unnecessary.

7:42 PM · Mar 23, 2026 · 717K Views

883 Replies · 1.1K Reposts · 16.5K Likes

#what’s happening at YC

Nakul Kelkar@MaruPelkar

Few observations from YC W26 Alumni day 1. Founders are optimizing for speed rather than amount - Everyone wants to close fast snd get back to building and selling. 2. Rounds are either 4 on 40 mill, 3 on 30 mill, 2.5 on 20 mill caps 3. Outliers are getting oversubscribed

2:23 AM · Mar 23, 2026 · 106K Views

29 Replies · 27 Reposts · 519 Likes

Enterprise Tech

#the age old debate - everyone has their own vertical model now starting with Cursor and now Intercom and Decagon and …is the juice worth the squeeze? The fundamental debate is with all of that data does it make sense to take an open source model and have a team to build your own or will the latest big model release from the top LLM builders just destroy any gains that fine tuning. In Intercom’s case, it now uses Apex 1.0, a model they fine-tuned (post-trained) from an unnamed open-weights base mode - team of 60 built for a year…

Eoghan McCabe@eoghan

https://t.co/I2Hf40EpIt

3:59 PM · Mar 26, 2026 · 305K Views

55 Replies · 70 Reposts · 455 Likes

Eoghan McCabe@eoghan

@petergyang It was a subset of the team and I think they were working on it for the better part of a year. @fergal_reid?

1:52 AM · Mar 27, 2026 · 744 Views

1 Reply

Clem from Hugging Face weighs in

clem 🤗@ClementDelangue

After @Pinterest @Airbnb @NotionHQ @cursor_ai, today it’s @eoghan @intercom publicly sharing that they’re finding it better, cheaper, faster to use and train open models themselves rather than use APIs for many tasks. And hundreds of other companies are doing the same without

6:15 PM · Mar 26, 2026 · 218K Views

69 Replies · 153 Reposts · 1.33K Likes

Finally Rahul Goyal, head of applied AI at Ramp, argues that rapid AI advancements like larger context windows and cheaper tokens will commoditize low-level optimizations, rendering efforts in context reduction, retrieval tweaks, or custom multi-agent systems obsolete for startups. Human-centric areas are more durable such as intuitive product design, seamless integrations with existing tools, and user training to leverage AI effectively in real workflows.

rahul@rahulgs

seems obvious but: things that are changing rapidly: 1. context windows 2. intelligence / ability to reason within context 3. performance on any given benchmark 4. cost per token things that are not changing much: 1. humans 2. human behavior, preferences, affinities 3. tools,

5:28 PM · Mar 25, 2026 · 357K Views

107 Replies · 224 Reposts · 3.17K Likes

#why open source matters - NemoClaw, hardened version of OpenClaw from Nvidia, running Qwen locally and sandboxed!

Niels Rogge@NielsRogge

So cool!! I'm running @nvidia's NemoClaw with Qwen3.5-27B entirely locally via Telegram. No API costs, no data being sent to anyone NemoClaw is a security sandbox built on top of @openclaw that lets you restrict the files and networks your lobster can access. I'm running the

1:33 PM · Mar 26, 2026 · 198K Views

110 Replies · 164 Reposts · 1.64K Likes

#this is the future of software development, self maintaining software, reminds me a lot of what OpenClaw already does to itself…

Ramp Labs@RampLabs

We built a codebase that maintains itself. An agent instruments every pull request, triages alerts, and pushes fixes autonomously. The system runs on a thousand AI-generated monitors, one for every 75 lines of code.

7:54 PM · Mar 23, 2026 · 233K Views

30 Replies · 40 Reposts · 1K Likes

#Claude down again - for over 5 hours and also imposed rate limits with no warning…we just don’t have enough compute!

Andras Bacsai@heyandras

As a Max 20x user (and sponsored OSS dev) I hit the limit in an hour (or less). I knew this was coming sooner or later, but the execution is the worst it could be. I don't often lose trust in SaaS, but @AnthropicAI make it easy. Luckily I already had a plan for this. 🤘

Thariq @trq212

To manage growing demand for Claude we're adjusting our 5 hour session limits for free/Pro/Max subs during peak hours. Your weekly limits remain unchanged. During weekdays between 5am–11am PT / 1pm–7pm GMT, you'll move through your 5-hour session limits faster than before.

1:30 PM · Mar 27, 2026 · 94.6K Views

61 Replies · 27 Reposts · 1.01K Likes

#turns out you still need people for that pesky last mile in the enterprise 🤷🏻‍♂️

Ed Sim@edsim

OpenAI doubling workforce for enterprise Yes, the last mile in the enterprise is the longest and messiest - you still need people “OpenAI would also step up recruitment of specialists to focus on what the company calls “technical ambassadorship”, helping businesses make better

7:54 PM · Mar 21, 2026 · 2.42K Views

4 Replies · 6 Reposts · 20 Likes

#🤯

Markets & Mayhem@Mayhem4Markets

🚨 Google is issuing a new, more urgent warning about quantum computing. The company claims that Q-Day, where many forms of encryption could be broken by quantum computers, is coming sooner than thought.

5:49 PM · Mar 27, 2026 · 34K Views

57 Replies · 109 Reposts · 470 Likes

#💯

BuccoCapital Bloke@buccocapital

People asked why I was so blown away by Claude Cowork, so I thought I’d puke some quick thoughts out The true promise of Claude Cowork, and ultimately any sort of agentic, AI powered workflow tool is to realize the perfect embodiment of the organization as described by Peter

12:08 AM · Mar 27, 2026 · 149K Views

51 Replies · 78 Reposts · 1.33K Likes

#just the beginning of AI efficiency gains, frankly most of the layoffs from companies have blamed AI, wait till the AI really is implemented like this 👇🏻

Official Layoff@LayoffAI

Snowflake just replaced its entire technical writing team with AI. Not reduced. Replaced. All ~70 of them. If your job can be documented, your job can be automated.

Pareekh Jain @pareekhjain

Snowflake laid off their entire technical writer team this week of around 70 people, replacing them with AI. https://t.co/W6DRE4kaaT

8:46 PM · Mar 22, 2026 · 81.9K Views

37 Replies · 74 Reposts · 488 Likes

Markets

#Walmart hits record highs while Saks goes bankrupt, AI is accelerating the brutal K-shaped split…but who actually wins?

Brian Sozzi@BrianSozzi

Blackrock CEO Larry Fink with an AI warning in his new annual shareholder letter: "But history suggests that transformative technologies create enormous value—and much of that value accrues to the companies that build and deploy them, and to the investors who own them. The

10:32 AM · Mar 23, 2026 · 6.4K Views

3 Replies · 5 Reposts · 32 Likes

#smart or desperate to catch up to Anthropic?

Andrew Curran@AndrewCurran_

OpenAl is offering private-equity firms a guaranteed minimum return of 17.5%, as well as early access to models not yet in public release.

11:34 AM · Mar 23, 2026 · 4.28M Views

331 Replies · 267 Reposts · 3.14K Likes

#speaking of PE, Thoma Bravo sharing its world view - sure its cheaper than before while fundamentals have improved but terminal value is so much less certain due to AI disruption

from Managing Partner Holden Spaht on his LI post:

AI disruption is real and profound, but not all software is equally exposed to the downside risk. Companies with generalist knowledge domains, simplified workflows, light regulatory oversight and limited switching costs are indeed more vulnerable. These types of firms don’t match our investment thesis, and we believe they have no place in our portfolio.