In Q3, HUMAN doubled down on speed, visibility, and control. HUMAN Sightline Cyberfraud Defense now supports direct Auth0 actions, critical health alerts, and smarter user search—plus our open-source MCP server. AgenticTrust has rapidly established itself as an innovation in agentic commerce security, empowering customers with full visibility and governance over consumer AI agents. Client-side Defense added aggregated PCI views, webhook integrations, and API list updates. Advertising Protection also leveled up with deeper compliance, an integration health tool, Snowflake enhancements, usage alerts, better publisher reporting, ad-format blocking, and a new Self-Service Publisher offering with free malvertising protection.

If you’d like to learn more about any of these features, please contact your account representative or fill out this form to connect with us.

HUMAN Sightline Cyberfraud Defense

Auth0 Integrations: Auth0 integrations can now be created directly from the Integrations page. Additionally, new Auth0-based actions, specifically “Disable Account” and “Disconnect Account” can be created via the Action Settings screen.

Detection Changes Audit Page: A new Detection Changes Audit Page provides clear visibility into detection updates from the previous seven days. The page features a filterable and exportable table that highlights:

• New Active Detectors: Recently added detectors that are enabled and not in research mode
• Updates: Detectors that have been removed and no longer influence detection
• Deletions: Detectors that have been removed and no longer influence detection
• Enablement/Disablement: Status changes that directly affect detection behavior

Critical Health Indicator Email Alerts: Administrators are proactively informed via email about critical security or operational risks (for example, missing Sensor or Enforcer). The email alerts will provide a clear explanation of the issue and why it’s critical, a short embedded troubleshooting guide, and a link to full documentation.

Smarter User Search: Customers can now search their recent account attacks by Email in addition to Account ID. Results are grouped into two categories: Recently under attack or not under attack. From there, the list on the screen filters automatically for those users. With a single click, you can jump straight into the relevant investigation screen (Account Takeover or Fake Account) for deeper insights.

Enforcer Upgrades: Customers now have the ability to upgrade existing Enforcers with HUMAN’s CDN Deploy Tool. The tool automatically searches for an existing integration on Cloudflare Worker, Akamai Property, Fastly Service, or AWS CloudFront, Lambda and IAM. It determines which Enforcer components need to be created and which of the existing components should be preserved, updated, or removed. The complete deployment plan is then presented to the user for confirmation prior to making any changes to the environment.

HUMAN Security MCP Server: We are pleased to announce the open-source release of the HUMAN Security MCP Server, a direct bridge between your AI assistant and HUMAN’s industry-leading threat intelligence. Built on the Model Context Protocol, this server allows any MCP-compatible AI agent (like Cursor or Claude) to natively talk to our APIs and turn your assistant into an always-on, fully-briefed security analyst.

AgenticTrust

First-of-its-kind Agentic Commerce Solution: Unveiled at Black Hat 2025, AgenticTrust is a trust and governance layer for agentic AI. It enables organizations to detect and classify AI agents, verify trust level, and govern how agents interact with web applications. By evaluating the intent behind each agent-initiated interaction, AgenticTrust empowers businesses to enable high-value use cases, prevent abuse and fraud, and safely integrate AI agents into the customer journey.

Industry Recognition: OpenAI lists HUMAN as a trusted solution to allowlist ChatGPT agent and verify traffic cryptographically.

Client-side Defense

Aggregated PCI DSS Dashboard/inventory: Customers can now view their PCI DSS dashboard and inventory across multiple app IDs and host domains concurrently, instead of having to scroll through the drop-down one-by-one to view each individually. Take a look at the documentation here.

Webhook Integration: Customers now have a webhook integration for both PCI DSS and Client-side notifications. This self-configurable, general-purpose tool allows customers to send notifications across channels.

Client-side Defense Notifications: Customers can now choose to receive or opt out of daily/weekly PCI DSS and Client-side digests. Additionally, HUMAN now offers notifications for every new security risk event, including:

• Client-side incidents on checkout pages
• Separate PCI DSS notifications for scripts versus headers
• Notifications for every new header value
• Configurable PCI DSS and Client-side Defense summary reports
• Security risk descriptions in notifications

Allow/Deny List Additions: Customers can now utilize the API to add incidents to the allow/deny lists, extending the functionality previously available only through the Client-side mitigation (CSM) UI.

Advertising Protection

Advertising Platform

HUMAN Dialogue Webinar: Learn how Kargo maximizes their HUMAN partnership by combining Ad Fraud Defense and Malvertising Defense solutions to keep premium supply clean while its marketplace scales. Kyle Green, VP Marketplace Strategy, shares how his organization continually reduces IVT and blocks malware in real time through HUMAN. Watch the webinar to learn how Kargo streamlines incident response, protects the user experience, and enables confident expansion.

Ad Fraud Defense

Compliance Enhancements: New fields have been released in our compliance insights expansion, including Inventory Partner Domain, Owner Domain, Seller Relationship, First Ad System, First Seller ID, First Seller Name, First Seller Domain, First Seller Type, and First Seller Relationship.

• Learn how opaque supply paths can allow low quality traffic to slip in and how HUMAN’s Compliance Dashboard creates the needed transparency for advertisers to evaluate and optimize their paths.
• Blog: Which Supply Paths Work? Unlocking the Hidden Map Of Programmatic Spend – HUMAN Security

Integration Health Tool is now available to all clients. Gain insights into your integration with HUMAN and understand how to best make improvements to maximize ad fraud protection.

Made for Advertising Protection:

• Introduced two new standalone indicators: Templated Sites and Automated Inflated Page Count
• Growth: +21% increase in flagged sites MoM.

Monthly Usage Alerts: Based on high demand, MediaGuard and FraudSensor now support monthly usage reports which can be set up by your dedicated account manager. This new feature allows customers to receive proactive notifications about their current request volumes for each product, helping manage usage and avoid exceeding limits.

Ad Click Defense

Building on the momentum of Q2, HUMAN released the Click Fraud Industry Guide featuring LinkedIn, exploring how click fraud impacts campaign performance and how advertisers can defend against it. Alongside the guide, we published new educational resources to help our customers stay ahead of evolving threats:

• Blog: HUMAN’s New Click Fraud Research
• Resource: Click Fraud Industry Guide — Protection & Prevention

These insights reinforce our continued investment in helping platforms protect ad spend, improve attribution, and drive cleaner performance outcomes. Throughout Q3, we also refined our technical documentation and Click IVT Taxonomy, adding deeper visibility into detection logic, dashboard functionality, and integration best practices.

Malvertising Defense & Ad Quality Defense

Ad Formats Blocking

Publisher Ad Quality Defense clients now have access to significantly enhanced ad format blocking functionalities, empowering greater control to customize what ads are allowed to be served on site. These new granular controls augment existing reporting and blocking capabilities, empowering more effective site monetization. The following ad formats are now available for control in clients’ dashboard:

• Interstitial: Ads that cover the entire screen
• Interscroller: Ads appearing between content with a fixed banner as visitors scroll
• In-Banner Video: Video ads within standard banner placements
• Parallax Ads: 3D effect ads that create a sense of depth and motion as visitors scroll

Enhancements to Publisher Reporting: Enhanced reporting and export features provide publisher clients with clearer visibility into malware activity and improved tools for investigating threats and ad quality violations. These updates offer greater context, flexibility, and efficiency in understanding and addressing malicious ad trends by:

• Simplifying the immediate overview of on-site activity
• Enriching trend and spike analysis with new data points and slicing options for deeper insights
• Facilitating review and collaboration outside of the dashboard

HUMAN Malvertising Defense Self-Service: Launched to offer access to our leading malware protection solution to all digital publishers. It empowers digital publishers, regardless of their size, to block harmful creatives before they reach visitors or damage brand trust for free. Setup takes just minutes with a single line of code to access effective protection that keeps audiences safe:

• No complex integrations
• Page-level protections, not heavy blocklists
• 100% free, up to 2 million monthly page views

Visibility and Control Over AI Agents

AgenticTrust surfaces, classifies, and governs AI agents with adaptive trust. Allow good automation, stop abuse, and protect your business without sacrificing growth.

Spread the Word