Skip to content
Tech News
← Back to articles

Agentic AI Isn't Risky; the Way Orgs Deploy It Is

2026-05-28 | original
read original more articles
Why This Matters

This article highlights that the risks associated with agentic AI are largely due to outdated coding practices and vulnerabilities in traditional software, not the AI technology itself. As organizations rapidly adopt these systems, understanding their underlying mechanics is crucial to prevent exploitation and ensure safe deployment. Properly addressing these vulnerabilities can help the tech industry mitigate risks and build more secure AI applications for consumers.

Key Takeaways

In the mad dash to deploy agentic artificial intelligence (AI) technology, developers aren't taking enough time to understand how their programs work, and they're inadvertently generating a whole lot of very old-fashioned vulnerabilities.

The universe of AI agents in the advanced economies of today's world is immeasurably large; literally, nobody has any clue how many of these things are out there. Some recent data suggests that somewhere around a third of organizations have either already adopted or will adopt, agentic AI tech soon, but even those measurements rest on self-reporting and generalized data, or loose predictions.

Contrary to popular belief, however, the agents themselves are not black boxes. In an unusually long presentation at Infosecurity Europe next month, researchers at Acronis are going to attempt to correct this unhelpful narrative by demonstrating how these bots work at a fundamental level. And by picking apart how AI agents work, they argue, an even more interesting finding emerges: that the cybersecurity vulnerabilities in this tech are not the fault of the AI; they're mostly a byproduct of traditionally bad coding.

Related:Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos

"What people don't understand is that agentic systems still rely on a lot of old world technology and a lot of old world vulnerabilities," says Acronis senior security researcher Eliad Kimhy. As agentic AI tech spreads more and more, "What we are going to see being abused are plain old vulnerabilities in software. And if you don't understand that, you're going to write bad software, and you're going to rely on your large language model (LLM) to do the rest. That's a bad approach."

The Vulnerabilities in Agentic AI

Last fall, researchers discovered a critical vulnerability in Salesforce. If an attacker planted a malicious prompt in a certain kind of Salesforce form, an AI agent interpreting it on the back end might carry out its instructions. The issue was made worse by the fact that Salesforce was still whitelisting an expired, easily purchasable domain.

Early this year, a researcher discovered a dangerous exploit chain in ServiceNow. Thanks to an overly permissive chatbot — protected only by a factory default credential — that could be authenticated as any user simply by supplying their email address, the researcher found that he could access and create powerful AI agents in any company's ServiceNow instance.

What do these stories, and so many more like it, have in common?

Since agentic AI has introduced so much new risk to organizations, one might reasonably assume that agentic AI technology is itself risky. But considering the sorts of vulnerabilities — lack of input sanitization, hardcoded credentials, insufficient access controls — what's new and "intelligent" about any of that?

... continue reading

Explore topics: agentic ai acronis infosecurity europe cybersecurity vulnerabilities megalodon malware
Related:
When revealed data brings AI rollouts to a screeching halt - and how to manage it
When old data brings AI rollouts to a screeching halt - and how to manage it
[An RX Global Event] Infosecurity Europe
This exec offers 4 ways to be a successful innovator in the age of agentic AI
AI costs begin to bite as agents may increase token demand by 24 times, says Goldman Sachs report — Uber and Microsoft among companies feeling the bite of tokenized billing

© 2026 GoKawiil

About | Editorial Policy | Contact