Auth0 Streamcast Episode 2: Stop experimenting with AI, start shipping

Agentic AI Risks

Agentic AI, systems that autonomously execute tasks across networks, has exploded in adoption since late 2025. Polls show 48% of security experts viewing it as the biggest threat vector for 2026, surpassing deepfakes and ransomware. This shift stems from enterprises deploying agents for efficiency in areas like customer service and data management, often without adequate safeguards.

Recent developments include frameworks like OWASP's Top 10 for Agentic Applications, released in December 2025, highlighting vulnerabilities such as prompt injection and memory poisoning. These threats allow attackers to hijack agents, turning trusted tools into insider risks. With non-human identities outnumbering humans 50:1 in systems, the attack surface has expanded exponentially.

Enterprises, particularly in finance and healthcare, bear the brunt. Agents handling money transfers or health data can lead to leaks affecting millions. IBM's 2025 report notes 63% of breached organizations lack AI policies, adding $670,000 to average breach costs. The EU AI Act's high-risk enforcement starts August 2, 2026, with fines up to €15 million or 3% of global turnover for non-compliance.

Less obvious tensions arise from agentic AI's definitional vagueness. What qualifies as 'agentic' varies, from simple assistants to combat systems, complicating procurement and evaluation. This ambiguity risks deploying over-permissioned agents, eroding accountability. Trade-offs include balancing autonomy for efficiency against human oversight to prevent cascades, where one agent's failure triggers others.

Stakeholders clash: developers push for innovation, while regulators demand controls. McKinsey warns of amplified risks to confidentiality and availability. Non-obvious angles include 'logical bifurcation points,' where subtle manipulations redirect reasoning without detection, and the irony that conflicting ethical metrics enhance robustness by preventing overfitting.