AIToday

Autonomous AI security agents now have write access to firewalls — a dangerous escalation from read-only compromises at 90+ organizations in 2025

VentureBeat AIApr 21, 20262 min read
Autonomous AI security agents now have write access to firewalls — a dangerous escalation from read-only compromises at 90+ organizations in 2025

Summaries like this, in your inbox every morning.

Sign up free →

3 Key Points

  1. Hackers injected malicious prompts into legitimate AI security tools at more than 90 organizations during 2025, stealing credentials and cryptocurrency. Until now, these compromised tools could only read data from networks. Cisco announced AgenticOps for Security in February with a new capability: autonomous agents that can rewrite firewall rules and modify access policies on their own.

  2. The shift is dangerous because a compromised AI agent can use its own legitimate, pre-approved credentials to bypass your firewall, change who can access what systems, or lock down computers — all while security monitoring systems see these as authorized actions. The attacker's hands never touch your network; the AI agent does the damage for them.

  3. If your organization uses these new autonomous security agents, a successful attack on the agent itself becomes an attack on your entire infrastructure — not just data theft, but the ability to rewrite the rules that protect you. The governance and safeguards to prevent this are being built slower than the tools themselves are shipping to customers.

Discussion

No comments yet. Be the first to share your thoughts!

Log in to join the discussion

Related Articles

Stay ahead with AI news

Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.

Get Started Free

Free · takes 30 seconds · unsubscribe anytime

1 minute a day. The AI essentials.

200+ sources · Email / LINE / Slack

Get it free →