CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Governance failures escalate as agentic AI NHIs double across enterprises

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

SANS Institute’s 2026 State of Identity Threats & Defenses Survey reveals a critical governance gap as enterprises integrate agentic AI into core operations. Organizations report a 76% increase in non-human identities (NHIs), such as service accounts, API keys, automation bots, and workload identities, with 74% already deploying AI agents or automations requiring credentials. Unlike traditional NHIs, agentic AI behaves unpredictably—interpreting instructions at machine speed, potentially hallucinating, and operating autonomously with privileged access to critical infrastructure and data. Credential hygiene failings are widespread: 92% of organizations do not rotate machine credentials on a 90-day cycle, fearing service account breakage; 59% rotate fewer than half of NHI credentials quarterly, while 15% do not track rotation rates at all. Manual access reviews and ticket-based provisioning are failing to scale across DevOps, cloud, and SaaS systems, with 5% of organizations unaware they are running agentic AI and 15% not even knowing their credential rotation policy.

Timeline

  1. 09.04.2026 13:00 1 articles · 3h ago

    Credential hygiene gaps escalate as agentic AI NHIs double in enterprises

    SANS 2026 survey findings indicate a 76% increase in non-human identities (NHIs) across organizations, with 74% already deploying AI agents requiring credentials. Credential rotation policies are broadly disregarded: 92% of organizations do not rotate machine credentials on a 90-day cycle, while 15% do not know their rotation rate and 5% are unaware of AI agent deployment in their environment. Manual access reviews and ticket-based provisioning are failing to scale, leaving AI agents to operate across DevOps, cloud, and SaaS systems with potentially privileged, unpredictable, and ungoverned access.

    Show sources
    Open in new tab

Information Snippets

  • Three-quarters (76%) of organizations report growth in non-human identities (NHIs) tied to enterprise workflows, including service accounts, API keys, automation bots and workload identities.

    First reported: 09.04.2026 13:00
    1 source, 1 article
    Show sources

  • Seventy-four percent (74%) of organizations are already using AI agents or automations that require credentials, with most NHIs quietly doubling or tripling in number.

    First reported: 09.04.2026 13:00
    1 source, 1 article
    Show sources

  • Ninety-two percent (92%) of organizations fail to rotate machine credentials on a 90-day cycle, fearing service account breakage, while 59% rotate fewer than half of their NHI credentials quarterly.

    First reported: 09.04.2026 13:00
    1 source, 1 article
    Show sources

  • Fifteen percent (15%) of organizations do not know their NHI credential rotation rate, and 5% do not know if they are running agentic AI in their environment at all.

    First reported: 09.04.2026 13:00
    1 source, 1 article
    Show sources

  • Agentic AI NHIs are granted privileged access to interact directly with critical infrastructure and data, operating at machine speed with unpredictable actions compared to traditional NHIs.

    First reported: 09.04.2026 13:00
    1 source, 1 article
    Show sources

  • Nearly 40% of organizations now use human-in-the-loop approvals for AI agent actions, but governance frameworks are struggling to keep pace with rapid scaling from pilots to core operations.

    First reported: 09.04.2026 13:00
    1 source, 1 article
    Show sources