Invited, Authorized, and Out of Control: Re-evaluating Trust for Agentic AI – Cybersecurity Insiders
Earlier this year, reports emerged that an AI agent operating within Meta contributed to a high-severity security incident. The issue was not a sophisticated cyberattack or a compromised account. The agent was operating with legitimate credentials and access to internal systems. Yet it exposed sensitive information to people who should not have seen it before the problem was identified and contained.
For most of the modern cybersecurity era, organizations have focused primarily on preventing unauthorized access. While security teams have long addressed insider threats through technologies such as privileged access management, network segmentation, and identity controls, the dominant assumption has been that attackers are trying to obtain access they should not have.
These autonomous agents are not trying to break in. Organizations are deliberately giving them access to data, applications, and business processes. They are being trusted to perform tasks that once required human judgment and oversight. As AI agents become more capable and more autonomous, the challenge is shifting from preventing unauthorized access to controlling authorized access.
This is why AI agents increasingly resemble a familiar security problem: insider risk.
Security teams have always had to account for employees, contractors, and partners who possess legitimate access to sensitive systems. AI agents now belong in that category. They can access information, interact with multiple systems, make decisions, and take actions on behalf of the organization. Unlike human insiders, they can do all of those things continuously and at machine speed.
The industry is beginning to recognize this shift. Earlier this year, Anthropic published its “Zero Trust for AI Agents” framework, arguing that AI agents should not be trusted by default and instead require continuous authentication, authorization, monitoring, and governance. Whether organizations adopt Anthropic’s specific approach or not, the broader point is difficult to ignore: security models built for human users and traditional software were never designed for autonomous digital actors.
In a global survey of 400 IT and security leaders, Akeyless and MRA Research found that two-thirds of respondents saying they suspect AI agents have already accessed data beyond their intended scope. Ninety-six percent said AI agents introduce new security risks, while 77% believe those risks are already affecting their organizations.
At the same time, businesses continue to deploy AI agents because the benefits are real. Agents can automate routine work, accelerate decisions, reduce operational friction, and help organizations scale activities that would otherwise require significant human effort. The objective is not to slow adoption. It is to make sure governance keeps pace with capability.
Many of the technical weaknesses involved are not new.
Most AI agents still rely on long-lived credentials such as API keys, static secrets, and persistent tokens. According to the Akeyless research, nearly seven in ten organizations rely on API keys to authenticate their AI agents. Those credentials often provide access to multiple systems, creating a large blast radius if they are misused, exposed, or granted excessive privileges.
Visibility is another concern, with fewer than half of organizations surveyed reporting having a complete inventory of where agent credentials are stored. In many environments, organizations are extending significant authority to AI agents without having a complete picture of how that authority is being managed.
What makes the situation more difficult is the gap between how quickly AI agents operate and how slowly organizations respond.
The survey also found that only 7% of organizations believe their existing controls could prevent a compromised AI agent from operating. The average time required to detect such an incident was approximately 14 hours, while containment and remediation often required several additional days.
This is why traditional security approaches that rely on periodic reviews, retrospective audits, or manual intervention are increasingly insufficient. AI agents require controls that can monitor behavior, enforce policy, and respond to violations in real time. Governance must operate at the same speed as the systems it is intended to govern.
In practice, this means moving beyond static credentials and periodic access reviews toward identity-centric controls designed specifically for autonomous systems. Organizations will increasingly need agent-specific identities, just-in-time credentials, dynamic authorization policies, continuous behavioral monitoring, and automated enforcement mechanisms capable of restricting or terminating agent activity when it exceeds approved boundaries during runtime.
As organizations invest more heavily in agentic AI, security discussions cannot remain focused solely on protecting models. Equal attention must be paid to governing the identities, permissions, and actions of the agents themselves.
Fortunately, the principles needed to address this challenge are already well understood. Least-privilege access, short-lived credentials, continuous verification, dynamic authorization, and comprehensive auditability have long been considered security best practices. The difference is that AI agents make these controls far more important than they were before.
Organizations that treat them as highly capable insiders, with carefully defined permissions and continuous oversight, will be better positioned to benefit from agentic AI without introducing unnecessary risk.
Every AI agent represents a new identity inside the enterprise. The organizations that succeed in the years ahead will not be the ones that place the greatest trust in AI. They will be the ones that maintain the greatest control over what that AI is allowed to do.
source
This article was autogenerated from a news feed from CDO TIMES selected high quality news and research sources. There was no editorial review conducted beyond that by CDO TIMES staff. Need help with any of the topics in our articles? Schedule your free CDO TIMES Tech Navigator call today to stay ahead of the curve and gain insider advantages to propel your business!
For most of the modern cybersecurity era, organizations have focused primarily on preventing unauthorized access. While security teams have long addressed insider threats through technologies such as privileged access management, network segmentation, and identity controls, the dominant assumption has been that attackers are trying to obtain access they should not have.
These autonomous agents are not trying to break in. Organizations are deliberately giving them access to data, applications, and business processes. They are being trusted to perform tasks that once required human judgment and oversight. As AI agents become more capable and more autonomous, the challenge is shifting from preventing unauthorized access to controlling authorized access.
This is why AI agents increasingly resemble a familiar security problem: insider risk.
Security teams have always had to account for employees, contractors, and partners who possess legitimate access to sensitive systems. AI agents now belong in that category. They can access information, interact with multiple systems, make decisions, and take actions on behalf of the organization. Unlike human insiders, they can do all of those things continuously and at machine speed.
The industry is beginning to recognize this shift. Earlier this year, Anthropic published its “Zero Trust for AI Agents” framework, arguing that AI agents should not be trusted by default and instead require continuous authentication, authorization, monitoring, and governance. Whether organizations adopt Anthropic’s specific approach or not, the broader point is difficult to ignore: security models built for human users and traditional software were never designed for autonomous digital actors.
In a global survey of 400 IT and security leaders, Akeyless and MRA Research found that two-thirds of respondents saying they suspect AI agents have already accessed data beyond their intended scope. Ninety-six percent said AI agents introduce new security risks, while 77% believe those risks are already affecting their organizations.
At the same time, businesses continue to deploy AI agents because the benefits are real. Agents can automate routine work, accelerate decisions, reduce operational friction, and help organizations scale activities that would otherwise require significant human effort. The objective is not to slow adoption. It is to make sure governance keeps pace with capability.
Many of the technical weaknesses involved are not new.
Most AI agents still rely on long-lived credentials such as API keys, static secrets, and persistent tokens. According to the Akeyless research, nearly seven in ten organizations rely on API keys to authenticate their AI agents. Those credentials often provide access to multiple systems, creating a large blast radius if they are misused, exposed, or granted excessive privileges.
Visibility is another concern, with fewer than half of organizations surveyed reporting having a complete inventory of where agent credentials are stored. In many environments, organizations are extending significant authority to AI agents without having a complete picture of how that authority is being managed.
What makes the situation more difficult is the gap between how quickly AI agents operate and how slowly organizations respond.
The survey also found that only 7% of organizations believe their existing controls could prevent a compromised AI agent from operating. The average time required to detect such an incident was approximately 14 hours, while containment and remediation often required several additional days.
This is why traditional security approaches that rely on periodic reviews, retrospective audits, or manual intervention are increasingly insufficient. AI agents require controls that can monitor behavior, enforce policy, and respond to violations in real time. Governance must operate at the same speed as the systems it is intended to govern.
In practice, this means moving beyond static credentials and periodic access reviews toward identity-centric controls designed specifically for autonomous systems. Organizations will increasingly need agent-specific identities, just-in-time credentials, dynamic authorization policies, continuous behavioral monitoring, and automated enforcement mechanisms capable of restricting or terminating agent activity when it exceeds approved boundaries during runtime.
As organizations invest more heavily in agentic AI, security discussions cannot remain focused solely on protecting models. Equal attention must be paid to governing the identities, permissions, and actions of the agents themselves.
Fortunately, the principles needed to address this challenge are already well understood. Least-privilege access, short-lived credentials, continuous verification, dynamic authorization, and comprehensive auditability have long been considered security best practices. The difference is that AI agents make these controls far more important than they were before.
Organizations that treat them as highly capable insiders, with carefully defined permissions and continuous oversight, will be better positioned to benefit from agentic AI without introducing unnecessary risk.
Every AI agent represents a new identity inside the enterprise. The organizations that succeed in the years ahead will not be the ones that place the greatest trust in AI. They will be the ones that maintain the greatest control over what that AI is allowed to do.
source
This article was autogenerated from a news feed from CDO TIMES selected high quality news and research sources. There was no editorial review conducted beyond that by CDO TIMES staff. Need help with any of the topics in our articles? Schedule your free CDO TIMES Tech Navigator call today to stay ahead of the curve and gain insider advantages to propel your business!
