AgentReadyHomeAgent Listing

← Nabiq

Nabiq — agentic threat model

9.4AIVSS 9.4 · Critical

Nabiq acts as an autonomous AI SDR with write-access to critical business communication channels and CRMs, presenting a high risk of automated social engineering, brand damage, and data exfiltration if compromised.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 8.5AARS uplift 0.9Factor sum 5.7/10Threat ×1.05Mitigation ×1.0
Autonomy of Action
0.80
Goal-Driven Planning
0.70
Self-Modification
0.10
Dynamic Tool Use
0.80
Persistent Memory
0.60
Contextual Awareness
0.70
Dynamic Identity
0.60
Multi-Agent Interactions
0.20
Non-Determinism
0.70
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — likely relies on third-party LLMs for personalized message generation. Vulnerable to prompt injection attacks that could bypass safety filters to generate spam, phishing, or abusive content.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — ingests and processes sensitive customer data from CRMs (Salesforce, HubSpot). Vulnerable to data exfiltration, unauthorized access to lead databases, and lack of data lineage controls.

L3 · Agent Frameworks✓ mapped

Orchestrates multi-platform messaging and CRM updates based on custom workflows. Vulnerable to insecure tool integration and indirect prompt injection where incoming emails or messages hijack the agent's execution flow to trigger unauthorized API calls.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — operates as a SaaS platform requiring storage of highly sensitive API keys and session tokens for LinkedIn, WhatsApp, and CRMs. Vulnerable to credential theft and host compromise.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — provides 'Real-Time Analytics' but does not specify security guardrails or output monitoring. Vulnerable to silent failures where the agent sends inappropriate messages without detection.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — lacks explicit mention of compliance standards (e.g., GDPR, SOC2) despite handling PII and CRM data. Vulnerable to regulatory non-compliance and unauthorized data sharing across platforms.

L7 · Agent Ecosystem✓ mapped

Integrates directly into a multi-platform ecosystem (LinkedIn, WhatsApp, Salesforce, HubSpot). Vulnerable to API rate-limiting, account suspension due to automated policy violations, and cascading trust issues if integrated platforms are compromised.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).