Advertisement
Episode 391 January 27, 2026 🎧 29:53

When Your AI Becomes the Breach: The Hidden Dangers of Agentic Skills

This episode investigates how the rise of autonomous AI agents creates a critical new attack surface through vulnerable ”skills” and protocols, requiring a shift to zero-trust governance to prevent your assistant from becoming an insider threat

AI Security Cloud Security Compliance Phishing
When Your AI Becomes the Breach: The Hidden Dangers of Agentic Skills

🎧 Listen to this Episode

⬇️ Download Episode 🔗 View on Podbean

Show Notes

We explore the rapid paradigm shift from passive chatbots to autonomous "agentic" AI, where new standards like the Model Context Protocol (MCP) grant systems the power to execute code and access sensitive files. Drawing on a massive empirical study of over 31,000 agent skills and real-world espionage campaigns like GTG-1002, we expose how attackers leverage "tool poisoning" and indirect prompt injection to hijack these agents for data exfiltration. Finally, we unpack essential defense strategies, including the NIST AI Risk Management Framework and the new OWASP Top 10 for Agentic Applications, to help organizations close the dangerous "consent gap" between user permissions and agent actions.

 

Sponsors:

https://airiskassess.com

https://compliance.airiskassess.com

https://cloudassess.vibehack.dev

https://vibehack.dev

 

Share this episode

𝕏 Share on X in Share on LinkedIn

Enjoying CISO Insights?

Subscribe to get new episodes delivered directly to your podcast app.

Apple Podcasts Spotify YouTube

Related Episodes

Advertisement
Ask Sage 🤖