WithSecure Cloud Protection for Salesforce now covers both established workflows and emerging Agentforce use cases. You get Salesforce-native protection that’s ready for what’s next.
Salesforce is entering a new era with Agentforce. Autonomous agents are beginning to take on tasks, support teams, and act on behalf of your business. That speed and scale is powerful, but it also changes your risk posture.
WithSecure™ Cloud Protection for Salesforce evolves in step with this shift. WithSecure™ Cloud Protection for Agentforce 1.0 is the first and only security add-on built natively for Agentforce, delivering real-time protection that moves at the pace of your AI agents.
Why this matters now
Agentforce is new, but the security challenges around Salesforce aren’t. Over the past year, even some of the world’s best-protected companies have been breached through Salesforce workflows. Attackers are already looking for the next easy entry point.
That’s why security can’t be left until later. If you’re experimenting with agents, you need to make sure they aren’t opening new doors for attackers.
Not every Salesforce environment is pristine — and that’s okay. Companies are already proving they can get ROI from Agentforce without perfect data models. But what you can’t afford to overlook is security. Without it, every autonomous agent you add doesn’t just create value, it also adds risk.
- Salesforce security is now a boardroom topic. Even leading enterprises have been breached through workflows.
- Agentforce adoption is only beginning. Your data doesn’t have to be perfect to try it, but overlooking security will scale your risk dramatically.
- Attackers move fast. What they exploited in workflows yesterday, they’ll target in agents tomorrow.
AI workflows create a new attack surface. Don’t let your AI projects be the weak link in your security.
What’s new in Agentforce extension 1.0:
Agentforce is built for speed. Security for it has to be just as fast. That’s the idea behind this extension: it’s the first to run natively within Agentforce workflows, scanning every link and action instantly in the background. There’s no slowdown, no break in the workflow. Just continuous protection that keeps up with your agents.
- Real-time URL scanning: Detect malicious or obfuscated links surfaced in agent workflows before they can do harm.
- Seamless integration: Part of the same Salesforce-native security app, no extra systems or risky connections.
- Free for existing customers: Included in your WithSecure Cloud Protection for Salesforce license, requires Apollo 2.9.1 version of the core app.
Real-time protection for Agentforce workflows
Trust every agentic action – in real time
Companies want AI agents to handle tasks because they’re faster than humans. That only works if security is invisible, always on, never slowing things down. This extension gives you exactly that: real-time protection and the peace of mind that your agents aren’t creating new risks while they work.
- Customer support: Agents share files and links in chat. Malicious ones are blocked before they ever reach staff or customers.
- Autonomous operations: Agents surface data from internal and external systems autonomously. Malicious URLs and hidden redirects to phishing sites are unwrapped instantly.
- Enterprise-wide agentic AI: As agent use grows, protection scales with it. Always on, always real time.
The result? Peace of mind knowing your AI agents are working for your business, not for the attackers.
And this is just the beginning. As Salesforce continues to evolve, so does WithSecure Cloud Protection. This extension isn’t just a one-time fix. It’s a foundation for the agent-powered workflows of today and the future.
The integration we’ve built into Salesforce is designed to grow with your needs. Whether your agents are handling messaging today or evolving into more complex tasks tomorrow, WithSecure Cloud Protection will be there, ensuring every action remains secure, fast, and seamless.
What you get today:
- Real-time URL scanning in Agentforce workflows (with the Agentforce extension)
- Real-time file scanning for Agentforce workflows (with the main WithSecure Cloud Protection for Salesforce app)
- A future-ready foundation for securing your expanding Agentforce footprint
Note: The Agentforce extension requires the main solution to be updated to version 2.9.1 or later.
Already using WithSecure Cloud Protection for Salesforce?
The Agentforce extension is available at no extra cost.
→ Upgrade to Apollo 2.9.1 and activate Agentforce protection
Real-world protection for autonomous AI workflows
Customer support
AI agents respond instantly, sharing helpful links and content.
WithSecure Cloud Protection for Agentforce scans it all in real time, blocking anything malicious – or otherwise unwanted – before it reaches staff or customers.
Autonomous operations
Agents surface data from internal records or external systems.
WithSecure Cloud Protection for Agentforce blocks malicious URLs that direct to phishing sites instantly.
Enterprise-wide automation
As Agentforce drives new workflows across channels and use cases, WithSecure Cloud Protection for Agentforce provides real-time security natively, and without friction.
ICYMI: Apollo 2.9.1 brings defense in depth against QR code phishing
QR codes in Salesforce look harmless. Until they aren’t
While Agentforce is the new frontier, attackers are also innovating, and QR code phishing is one of the fastest-growing threats inside Salesforce. We’re seeing more and more obfuscated QR code phishing and evasive file threats.
Cybercriminals are increasingly turning to QR codes to deliver phishing links in a way that bypasses traditional security layers. Known as quishing, these attacks embed malicious links inside QR codes, which are then placed into everyday business documents like PDFs, invoices, or slide decks.
When scanned – often on unmanaged mobile devices – the user is silently redirected to a phishing site designed to steal credentials or install malware. Because the destination is hidden inside a code, traditional file and link scanners often miss it.
WithSecure™ Cloud Protection for Salesforce combats this with malicious QR code detection capabilities, now enhanced in Apollo 2.9.1 to eliminate even stealthier layered QR-based threats.
This protection works across both internal and external workflows, and helps reduce phishing success rates, especially in environments with bring-your-own-device (BYOD) policies.
What’s new in Apollo 2.9.1:
- Detects malicious QR codes embedded in uploaded PDFs and Office files
- Unwraps shortened URLs (bit.ly, tinyurl, etc.) hidden within QR codes
Why it matters:
- Phishing attacks abusing QR codes have been on the rise
- Blocks phishing attacks others miss – even on unmanaged mobile devices
- Protects internal and external users before threats reach them
- Reduces manual investigation and security workload
What’s next on the horizon?
Our roadmap doesn’t just follow Salesforce. It tracks the threat environment around it.
Salesforce security has never been more visible. Recent breaches show that even the most advanced enterprises can be compromised through Salesforce workflows. Attackers look for the easy way in — and once they find it, they repeat it at scale.
Agentforce has the potential to transform how businesses operate. But if security is overlooked, it could also become the next door attackers walk through. That’s why our mission is clear: make sure the rise of agent-driven workflows doesn’t open new risks for the companies who rely on Salesforce every day.
Not every Salesforce environment is perfectly structured, and that’s fine. You can still build value with Agentforce even if your data model isn’t spotless. What you can’t afford is to bypass security. Real-time protection is non-negotiable, because agents work at speed and scale. A single overlooked vulnerability can spread risk across teams, customers, and connected systems.
WithSecure is the first to address this head-on. The Agentforce extension is the only truly Salesforce-native security solution available today, built to protect agent workflows from day one and evolve in lockstep with Salesforce’s roadmap. This is not an add-on. It’s the foundation for securing every action taken by Agentforce.
Looking forward, we’re continuing to invest on two fronts:
- Platform evolution → as Agentforce expands into file handling and cross-object automation, we’ll extend protection in parallel.
- Threat evolution → from phishing and QR codes to credential compromise and supply chain abuse, our defenses will adapt to how attackers operate, not just how Salesforce develops.
Our goal stays simple: protect every action in Salesforce – whether it’s taken by a person or by an agent.
Frequently asked questions
Is this a separate product from WithSecure Cloud Protection for Salesforce?
WithSecure Cloud Protection for Agentforce is a free add-on for licensed customers of WithSecure Cloud Protection for Salesforce, available now on AppExchange.
What does the Agentforce extension actually add?
It extends real-time protection to URLs handled via agentic (AI-driven) workflows. This ensures threats can’t spread through agentic AI workflows, which external security tools can’t reach. All future Agentforce-native security features will be released through the extension.
Will this protection layer affect performance or automation speed?
No. The extension is built for speed like no other. It scans in real time without slowing down AI agent or human workflows.
Who is this designed for?
Enterprises using Agentforce or planning to adopt it; especially those in regulated industries where cyber security, AI monitoring, data hygiene and auditability are critical.
How is this different from other Salesforce security tools?
Most tools rely on perimeter protections – like email or endpoint security. Legacy CASBs have a latency too big for swift AI agents. Only WithSecure Cloud Protection for Salesforce scans unstructured data on Salesforce natively, in real time, at the exact moment content is submitted, clicked, or shared by AI agents. That’s the level of protection Agentforce requires, and no other solution matches this native + real-time + AI-aware combination.
Is the solution certified for compliance?
Yes. WithSecure Cloud Protection is ISAE 3000 Type 2 (SOC 2 Type 2) and ISO 27001 certified, and provides full visibility and traceability for audits, even across AI-powered Agentforce workflows.
Does WithSecure Cloud Protection for Agentforce alter my Salesforce environment?
No. WithSecure™ Cloud Protection for Agentforce does not alter your Salesforce environment. WithSecure Cloud Protection main app installs natively, without changing your existing workflows, data structures, or configurations. The extension simply adds real-time protection for agentic content, working seamlessly alongside your current setup — so you can secure autonomous AI without disruption.
How is the app hosted?
WithSecure Cloud Protection for Salesforce uses a cloud-based threat analysis service called WithSecure Security Cloud. The service is hosted on AWS. You don’t need to worry about hosting yourself, and there are zero hidden hosting costs. The cloud service is hosted on data centers located in Ireland, US, Japan, Singapore and Australia. You can choose your point of presence, in other words where your data is located, and effectively control your data’s geographical location.
How do we activate the Agentforce extension?
Just install the extension from AppExchange and configure it via the familiar WithSecure Cloud Protection app UI in your Salesforce. It’s a click-and-go process with no new portals needed. You can find the installation instructions in this support article.
