CoChat Launches AI Collaboration Platform to Combat Shadow AI

Shadow AI is by definition invisible to and uncontrolled by both the IT and security departments. Shadow IT is a long-standing security concern. Its primary cause is the employee attempting to improve performance – to be better at work. Its effect is the introduction of unknown and unmanaged risk, and that can be problematic.  Today, shadow IT is morphing into shadow AI – the tools employees quietly introduce to improve their personal performance are increasingly AI tools. The effect is the same, but the risk is magnified by the potential power of unknown and unmanaged agentic AI. CoChat, launched in the first week of April 2026, is a platform designed to bring visibility and governance into enterprise AI shadows. It does this by providing employee access to the major foundational LLMs and removing the need for users to establish multiple disconnected gen-AI and agentic AI silos.  The danger in basing personal knowledge on LLMs is their response is still not guaranteed to be accurate. Different users may use different LLMs, and these different LLMs may provide different answers to the same question. The danger of shadow AI is that neither IT nor the security department, nor the rest of the organization, is aware that these users are not using personal judgment but are basing their knowledge on an external and unknown LLM. Employees are also installing agentic systems with unknown potential for autonomous action. Here, CoChat provides a control layer between the LLM and the agent, examining the LLM reasoning that ‘instructs’ the agent’s action. If the ‘instruction’ is considered dangerous (for example, the potential exposure of sensitive data to third parties, or the deletion of personal or enterprise data), CoChat will pause the autonomy and ask the user to explicitly approve or reject the process. CoChat enforces a human in the loop even where agentic systems are designed to operate without one. Consider OpenClaw – an autonomous personal assistant that directly serves the cause for shadow AI: improved personal performance. Estimates suggest OpenClaw has around 3 million active users. History suggests, metaphorically at least, it has an amoral mind that demands immediate unhindered gratification – and this can be problematic. “People feel the pain of needing to get the most out of AI, wanting to increase their performance productivity,” commented Marcel Folaron, CEO at CoChat. “So, they turn to automated AI tooling, such as OpenClaw and other locally installed tools, but not necessarily with IT’s knowledge. This can be very dangerous. These tools have access to everything on your system, and without the proper control mechanisms, they can run amok.” The LLM in an agentic system uses its own reasoning power, which is not guaranteed to be perfect, to instruct the agent on what to do next, potentially without any further reference to the user. The LLM undertakes the reasoning that guides the agents’ action. Agents, which are dynamic, adaptive and stateful, respond and take actions based on the LLM’s reasoning. Without human oversight, this can go very wrong. “If we identify an action we deem to be dangerous, we delay that action. We ask the user to approve or reject that action, and the next action is directed by the user rather than automatically enacted by the agentic system,” he continued. The purpose of CoChat is to provide visibility into enterprise shadow AI, to impose governance over it, and to encourage AI teamwork rather than invisible, isolated silos of operation. “CoChat brings the top AI solutions seamlessly into a secure workspace so teams can collaborate more effectively and use these tools with greater transparency and confidence,” said Folarun. In some ways, it can be understood by how we use Slack. Slack provides channels bringing individuals into teamwork. If members think others are going astray, they can raise concerns and the issue can be discussed. In CoChat, the performance of different LLMs and agentic systems can be seen and compared.  An individual user might be fooled by an LLM’s innate desire to please its user; to provide the response that it assumes the user wants. But other members on the platform might question this and raise their concerns.  CoChat allows each user to run the LLM and agentic system of their choice and encourages the use of multiple LLMs to determine any hallucinations and potential misdirection to agentic systems. But because it is a platform, it doesn’t simply ensure a human in the loop, it allows multiple humans in each loop. The AI used via the platform may technically remain shadow AI, but a layer of visibility, transparency and governance is applied to it. CoChat is fundamentally an AI collaboration platform designed for teamwork. It allows users to work together in shared chats with leading AI models, custom assistants, and autonomous agents while connecting AI workflows to the tools they already use – but interrupting potentially dangerous autonomous actions.  Learn More at the AI Risk Summit | Ritz-Carlton, Half Moon Bay Related: Can We Trust AI? No – But Eventually We Must Related: Shadow AI Risk: How SaaS Apps Are Quietly Enabling Massive Breaches Related: The Shadow AI Surge: Study Finds 50% of Workers Use Unapproved AI Tools Related: Why Agentic AI Systems Need Better Governance – Lessons from OpenClaw WRITTEN BY Kevin Townsend Kevin Townsend is a Senior Contributor at SecurityWeek. He has been writing about high tech issues since before the birth of Microsoft. For the last 15 years he has specialized in information security; and has had many thousands of articles published in dozens of different magazines – from The Times and the Financial Times to current and long-gone computer magazines. More from Kevin Townsend ‘By Design’ Flaw in MCP Could Enable Widespread AI Supply Chain Attacks CISO Conversations: Ross McKerchar, CISO at Sophos ‘Mythos-Ready’ Security: CSA Urges CISOs to Prepare for Accelerated AI Threats BrowserGate: Claims of LinkedIn ‘Spying’ Clash With Security Research Findings Can We Trust AI? No – But Eventually We Must Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks Mobile Attack Surface Expands as Enterprises Lose Control Critical Vulnerability in Claude Code Emerges Days After Source Leak Latest News In Other News: Satellite Cybersecurity Act, $90K Chrome Flaw, Teen Hacker Arrested Another DraftKings Hacker Sentenced to Prison Lawmakers Gathered Quietly to Talk About AI. Angst and Fears of ‘Destruction’ Followed Recent Apache ActiveMQ Vulnerability Exploited in the Wild Two North Korean IT Worker Scheme Facilitators Jailed in the US ZionSiphon Malware Targets ICS in Water Facilities Cursor AI Vulnerability Exposed Developer Devices 53 DDoS Domains Taken Down by Law Enforcement Trending Webinar: A Step-By-Step Approach To AI Governance April 28, 2026 With "Shadow AI" usage becoming prevalent in organizations, learn how to balance the need for rapid experimentation with the rigorous controls required for enterprise-grade deployment. Register Virtual Event: Threat Detection And Incident Response Summit May 20, 2026 Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. Register People on the Move Anti-ransomware platform Halcyon has named Kirstjen Nielsen and Chris Inglis as Strategic Advisors. ThreatModeler has appointed Kevin Gallagher as Chief Executive Officer. Thomas Bain has been appointed Chief Marketing Officer at Silent Push. More People On The Move Expert Insights Government Can’t Win The Cyber War Without The Private Sector Securing national resilience now depends on faster, deeper partnerships with the private sector. (Steve Durbin) The Hidden ROI Of Visibility: Better Decisions, Better Behavior, Better Security Beyond monitoring and compliance, visibility acts as a powerful deterrent, shaping user behavior, improving collaboration, and enabling more accurate, data-driven security decisions. (Joshua Goldfarb) The New Rules Of Engagement: Matching Agentic Attack Speed The cybersecurity response to AI-enabled nation-state threats cannot be incremental. It must be architectural. (Nadir Izrael) The Next Cybersecurity Crisis Isn’t Breaches—It’s Data You Can’t Trust Data integrity shouldn’t be seen only through the prism of a technical concern but also as a leadership issue. (Steve Durbin) Why Agentic AI Systems Need Better Governance – Lessons From OpenClaw Agentic AI platforms are shifting from passive recommendation tools to autonomous action-takers with real system access, (Etay Maor) Flipboard Reddit Whatsapp Email