OWASP Drops First AI Agent Risk List

Many organizations already have agentic solutions deployed without IT and security teams even knowing about it. These aren’t simple chatbots anymore—these AI agents access data and tools and carry out tasks, making them infinitely more capable and dangerous to enterprises. Agentic architectures operate on probabilistic reasoning, untrusted inputs in ways traditional security models never anticipated. These systems plan, execute, use tools, and make decisions with minimal human oversight, creating an entirely new attack surface where intent can be hijacked through natural language alone. The list highlights documented incidents over the past year revealing the scope of vulnerability. | AI Agent Risk List