Business

The agent security gap: 54% of enterprises have already had an AI agent incident, and most still let agents share credentials

Swipe to see the full story...

Key Highlight

Across 107 enterprises, AI agents are being given real access to systems and data while the controls meant to contain them lag behind..

Key Highlight

More than half have already had a confirmed agent security incident or a near-miss; only about a third give every agent its own scoped identity, and most agents still share credentials; and only three in ten isolate their highest-risk agents..

Key Highlight

The security stack is overwhelmingly borrowed from the model providers and hyperscalers rather than purpose-built for agents, spending remains a thin slice of the security budget, and enterprises are evenly split on whether their defenses are keeping pace with AI-enabled attackers..

Key Highlight

The result is an agent security gap — autonomous agents proliferating faster than the identity, isolation, and enforcement controls needed to hold them.This wave of VentureBeat Pulse Research examines how enterprises secure their AI agents: what tooling they run, how they manage agent identity and isolation, what has already gone wrong, how much they spend, and whether they believe their defenses are keeping pace with AI-enabled attackers.The central finding is an agent security gap — the distance between the autonomy enterprises are granting their agents and the controls in place to contain them..

Want the full analysis?

Detailed coverage and expert insights available on our main news hub.

Read Full Article