Oasis Security raised $120 million from Craft Ventures and Sequoia. On the surface, it looks like another large cybersecurity round. But the funding is not the main signal here.

What matters is the problem they are focusing on.

Oasis is building around non-human identities. Service accounts, APIs, bots, and increasingly AI agents. These are everywhere in modern systems, yet most teams don’t actively manage them.

That gap is starting to get expensive.

The problem most companies quietly accumulate

Modern infrastructure is no longer user-centric. Systems interact with other systems constantly. Automations trigger processes, APIs connect services, and now AI agents are beginning to act inside environments.

These identities don’t behave like people. They don’t log in through dashboards or go through password resets. But they still carry permissions, often broad ones.

The issue builds slowly.

A credential is created for an integration. Another for a temporary fix. Another during a migration. Over time, no one has a complete view of what exists, what is still active, or what level of access each identity holds.

This is not rare. It is the default state in many companies.

Oasis is targeting exactly that layer. Not user identity, but machine identity.

Why investors are paying attention now

This space has been around for a while, but urgency has increased.

Two things are driving it.

First, the level of automation has grown significantly. Systems are more connected, and each connection creates credentials.

Second, AI agents are starting to operate within systems. Not just analyzing data, but triggering actions.

Each of these adds more identities that need to be tracked and controlled.

Security teams already struggle with visibility. These identities make that problem harder because they don’t behave like users and often sit outside traditional monitoring approaches.

From an investor perspective, the logic is simple. The attack surface is expanding, the buyer is clear, and the problem grows as systems become more complex.

This is also a timing story

Oasis did not appear overnight. The company has been building in this space and is now accelerating with a large round.

This pattern shows up often in infrastructure.

A category exists quietly in the background. Complexity increases. A visibility gap becomes harder to ignore. Then capital flows in quickly.

AI likely accelerated this timeline.

Not because AI is the product, but because it multiplies the number of identities inside systems. More agents means more credentials. More credentials means more potential exposure.

What fintech founders should take from this

For fintech teams, this hits close to home.

Fintech stacks are heavily built on APIs and integrations. Payments, KYC providers, banking infrastructure, fraud tools. Every connection introduces machine identities.

In early stages, these are usually treated as setup tasks. Something you configure once and move on from.

That approach works until the system becomes too complex to track manually.

Security issues rarely build in a visible way. They tend to surface when something goes wrong.

Key takeaways for fintech startups

A few practical points worth keeping in mind:

• Non-human identities are growing faster than human users
  
  
• API keys, service accounts, and bots need lifecycle management, not just creation
  
  
• AI agents will increase identity sprawl
  
  
• Security tooling is shifting toward visibility and control layers
  
  
• Investors are backing problems that scale with system complexity

If this is starting to show up in your stack, it is worth addressing early. If you want help thinking through your setup and growth path, reach out.

Visa has introduced a new programme in Europe focused on preparing the payments ecosystem for a shift that is already starting to take shape. The shift is simple to describe but harder to implement. Software agents will begin making purchases on behalf of users.

The announcement is about setting the groundwork for how these transactions should work. If agents are going to search, decide, and pay, the payment layer needs to recognise and support that behaviour without breaking trust.

Visa is positioning itself early in that transition.

When software starts acting on behalf of users

The idea behind agent-driven commerce is that users delegate tasks to software. That could be booking trips, managing recurring purchases, or selecting products based on preferences. The key difference is that the user is not present at the moment of payment.

This changes the nature of a transaction. Today, most payment flows assume direct user action. A click, a confirmation, a biometric check. With agents, that interaction becomes indirect.

The system now needs to answer a different question. Not just “is this the right user?” but “is this action allowed on behalf of that user?”

Identity and permission become core problems

This is where things get more complex. If an agent is initiating a payment, it needs clear boundaries. What it can buy, how much it can spend, and under what conditions it can act.

That means identity is no longer just about authentication. It extends into permissioning and control. Users need to define rules, and the system needs to enforce them consistently.

Visa’s programme is focused on helping partners adapt to this model. Merchants, fintechs, and platforms will need to support transactions where decision-making is delegated, but accountability still sits with the user.

Payments without a visible checkout

One implication is that checkout, as we know it, becomes less visible. If an agent is handling the process, there may be no traditional flow with forms and confirmation screens.

Instead, payments become embedded in actions taken by software. That increases the importance of the underlying infrastructure. Everything has to work correctly without relying on user intervention at the final step.

For payment providers, this is a shift from designing flows for people to designing systems that can operate safely without them.

Europe as a controlled starting point

Launching this in Europe is a deliberate choice. The region has strong regulatory frameworks around payments and data protection, which makes it a structured environment to test new models.

If agent-driven transactions are going to scale, they need to align with existing rules on consent, security, and user protection. Starting in a regulated market allows these questions to be addressed early, rather than retrofitted later.

It also signals that compliance will be a central part of how this space develops.

Key takeaways for fintech startups

This move highlights a few practical shifts worth paying attention to:

• Payments will increasingly support actions initiated by software, not just users
  
  
• Identity is expanding beyond authentication into permissions and control
  
  
• Checkout flows may disappear in some cases, replaced by embedded transactions
  
  
• Trust will depend on how clearly users can define and manage agent behaviour
  
  
• Early infrastructure decisions will shape how agent-driven commerce scales

If you are building in fintech, this is the kind of shift that is easy to ignore early on and hard to catch up with later. If you want help thinking through how your product fits into this direction, reach out.

WanderWallet’s launch in Bolivia may look like a routine expansion. Another country added, another press update published. But the move points to something more practical. It targets a market where modern payment infrastructure already works well for locals, yet remains difficult to access for anyone coming from outside.

Bolivia is not a card-driven economy. QR payments dominate everyday transactions, from restaurants to transport. By late 2025, most interbank transfers were already processed instantly, which shaped how people expect to pay. Scanning a code and completing a transaction in seconds is the norm. Cards exist, but they are not the default.

For foreign users, this creates an awkward gap. Payments are possible, but not optimal. Cards and ATMs still function, yet they rely on official exchange rates that can differ noticeably from what locals experience in practice. The result is a subtle but consistent loss in value. You can pay, but you are not really participating in the same system.

Plugging into what already works

WanderWallet’s approach is not to introduce a new way to pay. Instead, it connects to what is already in place. Users can fund a wallet in USD or EUR, scan a local QR code, and complete payments instantly without needing a local bank account.

That detail matters more than it sounds. Bolivia already has widespread QR acceptance across daily use cases. Merchants are set up, customers are familiar with the flow, and the infrastructure is stable. Rather than competing with that system, WanderWallet simply extends access to it.

This shifts the role of the product. It is not trying to create new behavior. It is enabling existing behavior for a different group of users.

Where the real value sits

While the product highlights convenience, the more meaningful benefit comes from foreign exchange dynamics. Traditional card payments and ATM withdrawals rely on official rates, which can reduce purchasing power compared to local payment flows. QR-based payments, tied more closely to local conditions, offer a different outcome.

The difference is not abstract. It shows up in everyday spending, from small purchases to larger transactions. Over time, that gap adds up, which explains why informal exchange methods still exist in many markets like this.

WanderWallet brings that gap into a structured, digital form. It removes the need for workarounds while improving the overall result for the user.

A repeatable expansion model

Bolivia fits into a broader pattern that extends beyond a single market. In several regions, local payment methods dominate, foreign users face access barriers, and exchange rate dynamics create inefficiencies. These conditions tend to appear together.

WanderWallet is already active in countries like Brazil and Argentina, applying a similar approach while adapting to local infrastructure. The specific rails change, but the logic remains consistent. One product layer connects users to established domestic systems.

That consistency is what makes the model scalable.

Key takeaways for fintech startups

There are a few clear patterns worth noting here:

• Products gain traction faster when they align with existing user behavior rather than trying to reshape it.
  
  
• Foreign exchange inefficiencies continue to create real, practical opportunities in cross-border payments.
  
  
• Extending access to existing infrastructure can be more effective than building entirely new systems.
  
  
• Clear, focused use cases tend to resonate more than broad, multi-purpose solutions.
  
  
• Expansion becomes more efficient when the same underlying problem appears across multiple markets.

If you are working on a fintech product, these are the kinds of patterns worth paying attention to.

If you want help turning real market friction into a clear product strategy, reach out to us at Your Fintech Story. We support fintech teams in building and growing with focus.