All posts tagged: authorization

Agent authorization is broken — and authentication passing makes it worse

Agent authorization is broken — and authentication passing makes it worse

Published by skeptic

Anthony Grieco, Cisco’s SVP and chief security and trust officer, did not hesitate when VentureBeat asked whether rogue agent incidents are reaching Cisco’s customer base. “A hundred percent. We see them regularly,” Grieco told VentureBeat in an exclusive interview at RSAC 2026. “I’ve heard some that I can’t repeat, but they do get to the places of, you know, agents are doing things that they think are the right things to do.” The incidents Grieco described follow a consistent pattern: authentication passes, identity checks clear. The agent is exactly who it claims to be. Then it accesses data it was never scoped to touch or takes an action nobody authorized at that level of granularity. The failure is not identity; it’s authorization. “The business is saying things like, we’re gonna have 500 agents per employee,” Grieco told VentureBeat. “The security leaders are really focused on how to make sure that we do that securely.” Cisco’s State of AI Security 2026 report found that 83% of organizations planned to deploy agentic capabilities, but only 29% felt …

The authorization problem that could break enterprise AI

The authorization problem that could break enterprise AI

Published by skeptic

When an AI agent needs to log into your CRM, pull records from your database, and send an email on your behalf, whose identity is it using? And what happens when no one knows the answer? Alex Stamos, chief product officer at Corridor, and Nancy Wang, CTO at 1Password joined the VB AI Impact Salon Series to dig into the new identity framework challenges that come along with the benefits of agentic AI. “At a high level, it’s not just who this agent belongs to or which organization this agent belongs to, but what is the authority under which this agent is acting, which then translates into authorization and access,” Wang said. How 1Password ended up at the center of the agent identity problem Wang traced 1Password’s path into this territory through its own product history. The company started as a consumer password manager, and its enterprise footprint grew organically as employees brought tools they already trusted into their workplaces. “Once those people got used to the interface, and really enjoyed the security and privacy …

US lawmakers divided over ouster: Trump claims he didn’t need Congress’ authorization

US lawmakers divided over ouster: Trump claims he didn’t need Congress’ authorization

Published by Sam Flores

Americans are reacting strongly to news that Nicolás Maduro was captured and exfiltrated by U.S. special forces, with opinions sharply divided between those praising the president’s actions and those condemning them, while members of Congress—who were not briefed in advance—are split largely along party lines, with Democrats expressing outrage and Republicans voicing support; for more on this, we’re joined by international affairs editor Shirli Stibon. Keywords for this article Source link