CIO Influence
CIO Influence News Machine Learning Security

Salt Security Brings MCP Threat Protection to AWS WAF, Blocking AI Agent Abuse in Real Time

by PR Newswire
Calsoft expands its AI-driven IAM capabilities for zero trust security

API Security Solutions & Tools - API Protection Platform

Salt Security, the leader in API security, announced it is extending its patented, award-winning API behavioral threat protection to detect and block malicious intent targeting Model Context Protocol (MCP) servers deployed within the AWS ecosystem. Building on the recent launch of Salt’s MCP Finder technology, Salt now enables organizations to identify external misuse and abuse of MCP servers by AI agents and attackers, and automatically block these threats using its integration with AWS WAF.

MCP servers have rapidly become a key component of enterprise AI architecture, enabling LLMs and autonomous agents to call APIs, execute tools, and complete workflows. But they also represent a new threat vector. Deployed without central oversight and often exposed to the internet, MCP servers are increasingly targeted by adversaries for unauthorized access to critical data and system access.

With this new capability, Salt enables customers to use their existingย AWS WAF deploymentsย to block attacks on MCP infrastructure. The protections are informed by real-time behavioral threat data from Salt’s platform.

“Most organizations don’t even know how many MCP servers they have, let alone which ones are exposed or being abused,” said Nick Rago, VP of Product Strategy at Salt Security. “This capability lets them take action quickly, using existing controls to prevent real threats without needing to deploy new infrastructure.”

Also Read:ย CIO Influence Interview with Duncan Greatwood, CEO at Xage Security

The solution is based on Salt’s MCP Finder technology, which provides full visibility into the MCP layer across external, internal, and shadow deployments. By combining that discovery with AWS WAF, customers can:

  • Automatically block MCP misuse and abuse before it impacts applications

  • Discover previously unknown or unmanaged MCP implementations and ensure traffic is routed through AWS WAF for inspection and protection

  • Extend AWS WAF edge protection to the AI action layer

  • Apply intent-based behavioral threat detection to stop attacks targeting key AI infrastructure that traditional tools miss

  • Continuously update protections based on evolving attacker tactics

Salt Security is showcasing these capabilities at AWS re:Invent 2025. The integration is available now as part of the Salt Security API Protection Platform.

Catch more CIO Insights:ย The CIOโ€™s Role In Data Democracy: Empowering Teams Without Losing Control

[To share your insights with us, please write toย psen@itechseries.com ]

Cision distribution by PR Newswire empowers communicators to identify and engage with key influencers, craft and distribute meaningful stories, and measure the financial impact of their efforts. Cision is a leading global provider of earned media software and services to public relations and marketing communications professionals.

Related posts

OAG Flight Info API Now Available in the Microsoft Azure Marketplace

CIO Influence News Desk

Cequence Security Introduces Worldโ€™s First Unified API Protection Solution to Protect the Entire API Lifecycle

CIO Influence News Desk

Logpoint To Acquire Secbi, Adding Native Soar And Xdr Capabilities

CIO Influence News Desk