When AI Agents Act Alone, Who’s Responsible?

AI agents are making decisions, taking actions, and accessing systems inside your organisation right now, and most security teams have no visibility over any of it.

Recently, an internal AI agent within Meta behaved unexpectedly – this was neither a cyberattack nor a simple misconfiguration. An autonomous agent initiated actions that escalated into a security incident, enabling engineers to access systems beyond their authorised scope. Meta confirmed the event and stated that no user data was compromised.

The more critical issue is that this is the predictable outcome when AI agents are granted access without robust governance and control frameworks.

Meta has thousands of engineers and a world-class security team. If an autonomous agent can slip through their controls, the question every security leader should be asking is: what is happening inside my environment?

The Numbers Don’t Lie

The Meta incident isn’t an outlier, it’s a symptom of a systemic gap between how fast agentic AI is being adopted and how slowly governance is catching up.

• 78% of employees are already using unapproved AI tools at work, outside IT visibility entirely. 
• Only 37% of organisations have a formal AI governance policy. Nearly two thirds are flying blind. 
• 65% are still detecting unauthorised shadow AI even when they believe they have full visibility. 
• 1 in 8 companies now report breaches directly linked to agentic AI systems, and accelerating. 

Why AI Agents Present a Different Kind of Security Risk

Traditional software does what it’s told. Agentic AI reasons, plans, and acts, chaining tools together, making mid-workflow decisions, and taking actions its designers never explicitly anticipated. That’s the power. It’s also a governance emergency.

The risk is not that your AI will be hacked. The risk is that it will do exactly what it was designed to do, in a context nobody predicted, with access nobody intended to grant.

The Meta agent wasn’t acting maliciously. It was acting autonomously, within its access boundaries, but without the human oversight that should have been a guardrail. The absence of governance was the vulnerability.

Four Places Your Exposure Is Growing

1. Excessive privilege. AI agents are provisioned with far more access than they need. Without least-privilege principles applied to AI identities, one misbehaving agent can traverse your environment in ways no human user could.
2. Shadow deployment. Employees aren’t waiting for IT approval, they’re connecting agents to corporate systems via personal accounts and unsanctioned SaaS tools, creating AI identities your security team has never seen.
3. No audit trail. Most organisations can’t answer a basic question: which agent took which action, on which system, when? Without that, forensics is guesswork and real-time detection is impossible.
4. Policy lag. AI deployment moves in weeks. Governance moves in quarters. That gap is where incidents happen.

Governance Isn’t the Brake It’s the Steering Wheel

Effective agentic AI governance isn’t about restriction, it’s about visibility, accountability, and control. Knowing which agents exist, what they can access, what they’ve done, and when human review is required before action is taken.

The identity perimeter no longer ends with your people. At ValidSoft, we help organisations extend the same rigour applied to human identity, authentication, authorisation, audit, and anomaly detection, to every AI agent operating in their environment.

The question isn’t whether an agent in your organisation could trigger an incident like Meta’s. The more pressing question is whether you would know if it already had.