
Summaries like this, in your inbox every morning.
Sign up free →Hackers injected malicious prompts into legitimate AI security tools at more than 90 organizations during 2025, stealing credentials and cryptocurrency. Until now, these compromised tools could only read data from networks. Cisco announced AgenticOps for Security in February with a new capability: autonomous agents that can rewrite firewall rules and modify access policies on their own.
The shift is dangerous because a compromised AI agent can use its own legitimate, pre-approved credentials to bypass your firewall, change who can access what systems, or lock down computers — all while security monitoring systems see these as authorized actions. The attacker's hands never touch your network; the AI agent does the damage for them.
If your organization uses these new autonomous security agents, a successful attack on the agent itself becomes an attack on your entire infrastructure — not just data theft, but the ability to rewrite the rules that protect you. The governance and safeguards to prevent this are being built slower than the tools themselves are shipping to customers.
No comments yet. Be the first to share your thoughts!
Log in to join the discussion


Get curated AI news from 200+ sources delivered daily to your inbox. Free to use.
Get Started FreeFree · takes 30 seconds · unsubscribe anytime
1 minute a day. The AI essentials.
200+ sources · Email / LINE / Slack