All Posts

The Emerging Governance Gap Most enterprise security programs are built around a simple assumption: A human logs in. A human receives permissions. A human performs an action. A human can be audited. That assumption breaks down in Agentic AI environments. Today's AI agents can perform complex tasks across enterprise systems — without continuous human involvement: Access enterprise systems Invoke APIs Create sub-agents Make decisions Execute workflows Trigger downstream actions

We spent a semester with USC Marshall's AI Capstone cohort. Here's what we built, what we learned, and why this collaboration matters for the future of accountable AI. Spring 2026 · nxtlinq Team · AI Governance · Education A few months ago, we kicked off something that didn't fit neatly into any of our usual playbooks. No product sprint. No pilot agreement. No go-to-market motion. Instead, we walked into a classroom at USC Marshall School of Business and started a semes

Santa Ana, CA — May 5, 2026 IKE Tech, an AI-powered compliance infrastructure provider serving the global regulated nicotine industry announced that its platform leverages an advanced agentic execution security and governance layer powered by nxtlinq. This aligns with emerging industry discussions on securing autonomous AI systems, including a submission published in the public docket of the National Institute of Standards and Technology (NIST) under Docket ID: NIST-2025-00

Executive Summary In April 2026, a cyberattack on France's national identity agency, the Agence nationale des titres sécurisés (ANTS), exposed up to 19 million identity-linked records — names, email addresses, birthdates, home addresses, and data tied directly to passports, national ID cards, and driver's licenses. Roughly one-third of the French population had their sovereign identity permanently compromised in a single event. This is not an anomaly. It is a structural proof

Abstract As enterprise platforms evolve toward headless, API-first architectures, a new and dangerous assumption is emerging: that if agents can operate off-platform, they should interact directly with underlying databases. While superficially efficient, this approach fundamentally breaks enterprise security, governance, and system design principles. Direct database access by AI agents is not simplification—it is architectural regression. This white paper argues that the shif

The Mercor Breach Is the Wake-Up Call — But Not the First In April 2026, AI startup Mercor—valued at $10B—was hit by a major data breach that exposed candidate profiles, PII, employer data, and even source code. (TechCrunch) The root cause wasn’t a simple hack. It was a supply chain compromise—a poisoned open-source dependency (LiteLLM) that cascaded across thousands of systems in minutes. (TechCrunch) Up to 4TB of data was reportedly exfiltrated. (Asanify) And once again, th

Autonomous AI agents capable of planning and executing actions without continuous human intervention introduce security risks that are not adequately addressed by existing AI safety or cybersecurity controls. As agents move from advisory roles to executing decisions with real-world impact, the primary security challenge is no longer limited to model behavior, but instead centers on authority, accountability, and traceability: who or what is authorized to act, under what condi