Organizations are rapidly expanding the use of AI agents—systems that can execute multi-step tasks with limited human supervision—while governance, safety, and oversight controls lag behind. Deloitte’s State of AI in the Enterprise survey of 3,200+ business leaders across 24 countries reported 23% of companies already using AI agents “at least moderately,” projected to rise to 74% within two years, while only about 21% said they have robust safety and oversight mechanisms in place. Separately, commentary warning about AI-enabled intrusion acceleration cited a purported “GTG-1002” campaign in which AI agents allegedly automated most of the intrusion lifecycle and compressed response windows, arguing that traditional SOC processes struggle against autonomous, high-velocity adversary tradecraft.
Multiple other items in the set focus on broader responsible AI and policy concerns rather than a single security incident: an interview-style piece describes how “responsible AI” functions inside a large vendor’s product process, and another report highlights expert concerns about deploying LLM tools in law enforcement workflows (e.g., summarizing body camera transcripts or generating crime scene photo descriptions) given risks like hallucinations and bias. A separate business-leadership article frames cybersecurity and AI as strategic imperatives amid geopolitical instability but does not provide incident-specific or vulnerability-specific details. Overall, the material is best characterized as governance and risk posture coverage around agentic AI rather than a unified, verifiable breach or vulnerability disclosure.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
4 events from the most recent confirmed update back to the earliest known activity.
At the World Economic Forum's 56th Annual Meeting in Davos in January 2026, cybersecurity leaders discussed how AI agents introduce new risks as they are integrated into business operations. Speakers emphasized prompt injection as a major threat and recommended controls such as zero trust, least privilege, and guard agents to monitor AI behavior.
By January 2026, Deloitte's latest State of AI in the Enterprise findings were published, reporting that 23% of companies already use AI agents at least moderately and that figure is expected to rise to 74% within two years. Only about 21% of respondents said they had robust safety and oversight mechanisms, prompting recommendations for autonomy limits, real-time monitoring, and audit trails.
In late 2025, Deloitte conducted a global survey of more than 3,200 business and IT leaders across 24 countries on enterprise AI use, including agentic AI adoption, governance, and operational challenges. The survey found access to AI tools expanding quickly while production deployment, safety controls, and governance maturity lagged.
In mid-September 2025, an alleged Chinese state-sponsored operation dubbed GTG-1002 reportedly used AI agents to autonomously perform 80–90% of the intrusion lifecycle against about 30 technology, finance, and government entities. The campaign was described as using a commercially available jailbroken model, highlighting the potential for similar capabilities to spread beyond state actors.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
4 references tracked. Mallory keeps watching after this page renders.
helpnetsecurity.com
Open sourcescworld.com
Open sourcescworld.com
Open sourcezdnet.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.