Skip to main content
Explore our brands An Informa TechTarget Publication
close search
site logo

US and allies urge ‘careful adoption’ of AI agents

New guidance from a coalition of Western governments underscores the difficult-to-predict risks of still-evolving agentic tools.

Published May 1, 2026
Eric Geller's headshot
Senior Reporter
An illustration of agentic AI
MF3d via Getty Images

First published on

Cybersecurity Dive

The Australian and U.S. governments, along with other international partners, released guidance on Friday for safely deploying agentic AI systems.

The automation capabilities of AI agents create unique risks that can lead to “productivity losses, service disruption, privacy breaches or cybersecurity incidents,” the guidance document reads. “Organisations must therefore anticipate what could go wrong, assess how agentic AI risk scenarios might affect operations and establish ongoing visibility and assurance to maintain confidence in their agentic AI investments.”

Safely using AI agents means “never granting it broad or unrestricted access, especially to sensitive data or critical systems,” the document warns. Companies, it says, “should only use agentic AI for low-risk and non-sensitive tasks.”

The publication — co-issued by the Australian Signals Directorate, the U.S.’s Cybersecurity and Infrastructure Security Agency and National Security Agency and their British, Canadian and New Zealand counterparts — comes as businesses race to integrate AI tools into their workflows and increasingly embrace agentic AI for its ability to automate repetitive tasks.

Organizations evaluating agentic AI tools should understand the range of risks associated with them, the Western governments warned in their guidance document. AI agents are complex systems whose interconnected pieces create “systemic risks,” and they rely on large language models and external data sources that can introduce their own vulnerabilities, such as maliciously crafted web-search results enabling prompt-injection attacks.

“Every individual component in an agentic AI system widens the attack surface, exposing the system to additional avenues of exploitation,” the document says.

The immaturity of AI security standards and the difficulty of applying human-centric governance models to automated technologies also make it difficult to shield agentic AI tools from sabotage or malfunction, according to the publication.

The document describes several agentic AI-specific security risks, including abuse of privileges, identity spoofing, unexpected actions and deception. It also lists risks associated with the way AI agents integrate with other tools, including flawed orchestration parameters and corrupted third-party components.

Another section recommends best practices for using AI agents, including strict controls around behavior, strong identity management and robust divisions of labor to prevent cascading failures. Businesses should also conduct regular evaluations of their agents, the document says, including red-teaming exercises and third-party component verification.

Other advice covers continuous monitoring of agentic AI systems, validation of agents’ outputs and human-in-the-loop approval of any actions “where the cost of error is high, such as system resets, network egress or deletion of critical records.”

“Strong governance, explicit accountability, rigorous monitoring and human oversight are not optional safeguards but essential prerequisites,” the document warns. “Until security practices, evaluation methods and standards mature, organisations should assume that agentic AI systems may behave unexpectedly and plan deployments accordingly, prioritising resilience, reversibility and risk containment over efficiency gains.”

Editors' picks

Company Announcements

View all | Post a press release
Eagleview Launches Eagleview Horizon: The Agentic AI Engine Powered by 25+ Years of Verified P…
From Eagleview
April 21, 2026
YMX Logistics Introduces The First Autonomous Yard Operating System
From YMX Logistics
April 13, 2026
YMX Logistics logo
Protectors Edge: Leadership through Strategy and Action
From 360 Privacy
April 24, 2026
360 Privacy logo
Zapier Survey: 77% of Enterprise Leaders Say AI Skills Are Urgent, but Most Companies Still Ar…
From Zapier
April 28, 2026
Zapier logo
Editors' picks
Latest in Security
This website is owned and operated by Informa TechTarget, a global network that informs, influences and connects the world's technology buyers and sellers.

© 2025 TechTarget, Inc. or its subsidiaries. All rights reserved. An Informa PLC company.
Privacy policy | Terms of use | Take down policy | Cookie Preferences / Do Not Sell