NewKerala.com

82% Indian Firms Fear AI Agents Will Breach Security by 2027

A new report reveals a significant security gap as AI agents proliferate in Indian enterprises, with 82% expecting these agents to outpace their security guardrails within a year. The lack of visibility into this "shadow workforce" of non-human identities creates new pathways for cyberattacks and compromises. Nearly 90% of leaders are concerned about meeting recovery objectives as agent-driven threats increase. The operational promise of AI is under strain as organizations deploy autonomous systems without the necessary governance controls.

Key Points: AI Agents Outpacing Security in Indian Firms: Report

  • 82% fear AI will outpace security
  • Only 26% have full agent visibility
  • 38% expect 50% attacks from AI
  • Creates a "shadow workforce" risk
2 min read

82 pc Indian firms feel AI agents will outpace security controls by 2027: Report

82% of Indian enterprises expect AI agents to surpass security controls within a year, creating a "shadow workforce" and new cyber threats.

"AI disruption is real and rapidly accelerating in India, yet many organisations lack the visibility, control, and restoration capabilities - Ashish Gupta, Rubrik"

New Delhi, April 21

Around 82 per cent of Indian enterprises expect AI agents to outpace their organisation's security guardrails within the next year, and only 26 per cent report full visibility into agents operating in their environments, a report said on Tuesday.

The report from security and AI operations company Rubrik said the lack of visibility leaves organisations unable to secure identities that are already making decisions, taking actions, and interacting with critical data.

Non-human identities tied to agents are proliferating faster than enterprises can track or govern them, forming what researchers describe as a "shadow workforce."

These identities often operate with persistent access and limited oversight, creating new pathways for misuse, compromise, and lateral movement, the report noted.

Over 82 per cent of Indian respondents reported that agents require more manual oversight than how much they save in efficiency, while 81 per cent lack the ability to roll back agent actions without system disruption.

Nearly nine in ten leaders expressed concern about meeting recovery objectives as agent-driven threats increase.

"The threat itself is accelerating. Nearly half of respondents expect agentic systems to drive the majority of attacks in the coming year, reflecting a broader shift in how adversaries operate," the report said.

Autonomous systems compress timelines, scale attacks, and blur the line between insider risk and external compromise, it added.

Around 66 per cent of Indian respondents believed that AI security advice is still too theoretical or early-stage to be practical.

Further, 38 per cent of Indian organisations expect that up to 50 per cent of cyberattacks in the next 12 months could be driven by agentic AI.

Globally, organisations are operationalising autonomous systems without the controls required to govern them, introducing a gap between innovation and security.

The gap is compounded by identity sprawl, even as the operational promise of AI agents is under strain, the report said based on a survey of over 1,600 global IT and security leaders.

"AI disruption is real and rapidly accelerating in India, yet many organisations lack the visibility, control, and restoration capabilities required to securely manage AI-driven environments," said Ashish Gupta, Managing Director, India & Head of Engineering at Rubrik.

- IANS

Share this article:

Reader Comments

P
Priya S
As someone working in cybersecurity in Bengaluru, I see this daily. The pressure to deploy AI agents is immense from management, but the security teams are always an afterthought. 82% feeling this way is actually low in my experience. The real number is probably higher. 😓
V
Vikram M
The stat about 66% finding AI security advice too theoretical hits home. We attended a seminar last month, and it was all high-level concepts. No practical, implementable solutions for a mid-sized Indian firm. Where are the 'jugaad' fixes for this? We need actionable guidance, not just warnings.
S
Sarah B
Working with MNCs here in Gurgaon, the gap between global HQ's AI mandates and local security readiness is huge. We're told to implement, but the tools and training aren't there. This report validates what many of us on the ground have been saying for months.
R
Rohit P
This is the downside of our "Digital India" push. Fantastic initiative, but security has to be baked in from the start, not bolted on later. Hope NASSCOM and MeitY are paying attention. Our tech reputation is at stake.
K
Karthik V
While the concern is valid, let's not spread fear. AI is a tool. The problem isn't the AI agent, it's the lack of proper governance and Indian companies cutting corners on security budgets. Invest in your infosec teams, give them authority, and this "shadow workforce" can be managed. 🛡️

We welcome thoughtful discussions from our readers. Please keep comments respectful and on-topic.

Leave a Comment

Minimum 50 characters 0/50