New Report Warns of Looming Security Crisis as AI Agents Proliferate

Salt Security has released a groundbreaking report titled Securing the Future of Agentic AI: Building Consumer Trust through Robust API Security, highlighting a critical warning: without proper Application Programming Interface (API) discovery, governance, and security, AI technologies designed to enhance customer engagement could expose organizations to cyberattacks and data leakage. APIs power AI agents by enabling them to make requests, retrieve data, and interact across platforms. The report emphasizes that strengthening API security is essential to improving consumer confidence and unlocking the full business potential of agentic AI.

Key Highlights from Businesses Using Agentic AI

• Over 53% of organizations are already deploying or plan to deploy agentic AI for customer-facing roles.
• Nearly half (48%) use between 6 and 20 types of AI agents; 19% deploy between 21 and 50.
• 37% report having 1–100 AI agents active; 18% host between 501–1000 agents.
• Only 32% conduct daily API risk assessments.
• 37% have dedicated API security solutions.
• Just 37% have a data privacy team overseeing AI initiatives.
• 7% assess API risk monthly or less.

Key Highlights from Consumers

• 64% of consumers have interacted with AI chatbots more frequently in the past year.
• 80% of those consumers shared personal information during interactions.
• 44% felt pressured to share information just to complete a task.
• Only 22% are comfortable sharing data with AI agents, compared to 37% over the phone and 54% in person.
• 62% believe AI agents are easier to trick than humans.

AI Agent Use is Exploding, But Consumers Aren't Convinced

The report reveals a growing adoption of agentic AI in business, yet consumer trust remains a significant barrier. Despite increased interaction with AI chatbots, many consumers are wary of sharing personal data due to security concerns and perceived vulnerabilities. Michael Callahan, CMO at Salt Security, stated, "Agentic AI is changing the way businesses operate, but consumers are clearly signalling a lack of confidence. The safety and success of AI depend on APIs that power it, which must be effectively discovered, governed, and secured. Otherwise, the trust gap will widen, and the risks will escalate."

The Security Shortfall: API Risk Is Underestimated

APIs form the digital foundation for AI agents, enabling data retrieval, action triggers, and cross-platform interactions. However, each connection increases the attack surface. As AI agents automate more tasks and handle sensitive data, vulnerabilities in API authentication, input validation, and access control become critical risks. Despite these risks, security practices are inconsistent:
• Only 32% of organizations conduct daily API risk assessments.
• 7% conduct assessments monthly or less.
• 37% use dedicated API security solutions.
• 37% have dedicated data privacy teams overseeing AI initiatives.

Recommended Best Practices

The report outlines essential security measures to protect AI-driven APIs:
• Continuous API monitoring and anomaly detection using AI tools.
• Strong authentication frameworks and least-privilege access.
• Encryption of data in transit and at rest.
• Regular security testing and developer training.
Michael Callahan concluded, "As AI agents become more autonomous and embedded in business operations, securing the APIs that power them should be an urgent priority. Securing API infrastructure now reduces risk, improves trust, bolsters innovation, and increases cyber resilience." Download the full report, Securing the Future of Agentic AI, here to explore the complete findings and recommended security actions.

---

Methodology: Censuswide conducted a survey on behalf of Salt Security of 1000 US-based consumers and 250 organizations with 250+ employees already using agentic AI. About Salt Security: Salt Security secures the APIs powering today's digital businesses. The company provides the fastest API discovery, uncovering shadow, zombie, and unknown APIs before attackers do. Its posture governance engine and centralized Policy Hub automate security checks and enforce safe API development at scale. Leveraging machine learning and AI, Salt detects threats early, giving companies a critical advantage against sophisticated API attacks. Leading organizations trust Salt to find API gaps fast, mitigate risks, and maintain business continuity. Media Contact: Karl Bateson Karlb@salt.security

---

Source: PR Newswire

FAQ

What are AI agents?

AI agents are software programs that use artificial intelligence to perform tasks autonomously, interact with systems, and make decisions to achieve specific goals. They often leverage APIs to access data and functionality across different platforms.

What is the primary concern highlighted by the Salt Security report?

The report's primary concern is the potential security crisis arising from the proliferation of AI agents, specifically the risks of cyberattacks and data leakage due to inadequate API security practices, including discovery and governance.

Why is API security crucial for AI agents?

API security is crucial because APIs are the backbone of AI agent functionality. They enable AI agents to communicate, retrieve data, and perform actions. Vulnerabilities in APIs can be exploited by attackers to compromise the AI agent and the systems it interacts with.

What percentage of consumers are comfortable sharing data with AI agents?

Only 22% of consumers are comfortable sharing data with AI agents, significantly lower than sharing data over the phone (37%) or in person (54%).

What are the key best practices recommended for securing AI-driven APIs?

The recommended best practices include continuous API monitoring and anomaly detection, strong authentication, least-privilege access, data encryption, and regular security testing and developer training.

What percentage of organizations conduct daily API risk assessments?

Only 32% of organizations conduct daily API risk assessments, indicating a significant gap in proactive security measures for API infrastructure.

Crypto Market AI's Take

The proliferation of AI agents, as highlighted by the Salt Security report, underscores a critical challenge that extends beyond traditional cybersecurity. As AI becomes more deeply integrated into business operations, the security of the underlying APIs becomes paramount. This is particularly relevant in the rapidly evolving cryptocurrency market, where speed, security, and trust are foundational. At Crypto Market AI, we understand the importance of robust security frameworks, especially when dealing with automated systems like AI trading bots and market intelligence tools. Our platform prioritizes secure API integrations and data handling to ensure the integrity of our advanced AI trading bots and market analysis. Ensuring that AI agents are not only functional but also secure is essential for fostering consumer trust and enabling innovation within the digital asset space.

More to Read:

• AI Agents are Broken: Can GPT-5 Fix Them?
• AI Agent Oversight: Critical to Secure, Scalable Autonomy
• The AI Gig Economy is Here, and It Pays in Crypto