Ransomware attacks are surging massively and hitting Germany particularly hard; the SafePay group is responsible for approximately one quarter of them.
Intelligence chiefs from Five Eyes countries identify AI-driven attack scenarios as a critical risk manageable only through strict adherence to cybersecurity fundamentals.
Orphaned AI agents in enterprise networks pose significant security risks because their authorization and access rights are often undocumented and not traceable.
AI agents as active system participants with data access require new security approaches beyond classical governance, as their risks stem from gradual behavioral changes and Shadow AI, not from obvious violations.
AI agents in e-commerce are vulnerable to takeover attacks via prompt injection that bypass traditional fraud detection because human behavioral signals are absent.
Locally deployed open-source language models enable autonomous attack worms when equipped with appropriate agent architectures, independent of paid frontier models.
Of 100 tested AI agents, only 11 offer an acceptable balance between performance and security; 98 % exhibit the same critical combination of broad data access, missing input controls, and uncontrolled authorization.
