f in x
69% of Enterprises Share API Keys Across AI Agents, Exposing Critical Security Gaps
> cd .. / HUB_EDITORIALE
News

69% of Enterprises Share API Keys Across AI Agents, Exposing Critical Security Gaps

[2026-07-10] Author: Ing. Pietro Maiorana
Zenithby Meteora Web The operating system for your business. Social, clients, bookings and invoices in one platform. Gyms, barbers, professionals. Discover Zenith Free demo · no card

Sharing a single API key across five AI agents turns a single compromise into a large-scale breach. According to VentureBeat's June 2026 Pulse Research of 107 enterprises, 69% of organizations use credential sharing in at least part of their agent deployments. This finding explains the buying spree reshaping enterprise security this year: Palo Alto Networks, CrowdStrike, and Cisco have collectively invested over $22 billion in the past year, targeting exactly the layer most enterprises have not yet finished building.

Credential sharing multiplies the impact of an attack

When a single agent is compromised, shared credentials allow the attacker to inherit permissions from every workflow that uses that key. The forensic trail goes cold at the credential level, with no log indicating which specific agent performed an action. Only 32% of enterprises give every AI agent its own scoped, managed identity. Nearly half (48%) report that some agents have scoped identities while many still share credentials. Another 32% say agents mostly run on shared API keys or borrowed human and service-account credentials. After deduplication, 74 out of 107 organizations (69%) flagged credential sharing in at least one answer.

Sponsored Protocol

Acquisitions target this weakness directly. Palo Alto Networks completed its purchase of CyberArk on February 11 for $21.1 billion, the largest deal in its history. CrowdStrike closed its $740 million acquisition of SGNL and launched Continuous Identity for AI Agents, a product that validates every agent action in real time based on ownership, caller identity, and device risk posture. Cisco announced its intent to acquire Astrix Security on May 4 for a reported $400 million, focusing on API keys, service accounts, and OAuth tokens.

Exposure grows while containment falls short

Forty-nine percent of enterprises enforce scoped permissions at runtime, and 47% monitor and log agent activity. However, only 30% sandbox their highest-risk agents, the one control that limits blast radius when the first two defenses fail. The sharpest finding emerges when splitting results by company size: the incident rate rises from 49% for companies with 101 to 1,000 employees to 63% for those with more than 1,000. Meanwhile, sandbox isolation drops from 35% to 20%. At organizations with more than 5,000 employees, the gap between incident rate and isolation reaches 60 percentage points. Companies with the most agents have the least protection.

Sponsored Protocol

Native provider controls are not enough

Eighty-two percent of respondents rely on provider-native or hyperscaler controls as their primary agent security layer. OpenAI leads at 51%, followed by Google Cloud at 36%, Microsoft Azure at 35%, and Anthropic at 29%. However, these controls mainly filter prompts and outputs without offering scoped identity or sandboxing. Specialized products like Palo Alto Networks' Prisma AIRS or CrowdStrike remain in single digits. As CrowdStrike CTO Elia Zaitsev stated at RSAC 2026, "Observing actual kinetic actions is a structured, solvable problem. Intent is not." Credential sharing prevents exactly that kind of tracking.

Sponsored Protocol

Three moves for security directors

Inventory every agent's credentials this quarter, mapping which share keys and which use borrowed human identities. Sandbox the riskiest agents first, starting with those accessing sensitive data. Match the budget to the incident rate: one-third of enterprises fund agent security at 5% or less of the security budget, even though over half have already had an incident or near-miss. The board's question is simple: if one of our AI agents was compromised this afternoon, which systems did it touch, and whose credentials was it holding? For 69% of enterprises, the answer is a shrug.

For further reading, check the article on OpenAI GPT-5.6 Sol, Terra, and Luna with enhanced cybersecurity. The full VentureBeat Q2 Agentic Security report will be released at VB Transform on July 14-15 in Menlo Park.

Source: https://venturebeat.com/security/shared-api-keys-expose-ai-agent-fleets-venturebeat-research

Ing. Pietro Maiorana

> AUTHOR_EXTRACTED

Ing. Pietro Maiorana

Ingegnere informatico e co-fondatore di Meteora Web, CMO dell'agenzia. Esperto di marketing digitale, social media, advertising, copywriting e SEO.
[ Read Full Dossier ]

> METEORA_WEB // DIGITAL AGENCY

We build the digital presence your business deserves.

Websites, social media, online advertising, e-commerce and high-performance hosting, engineered with method by computer engineers in Sciacca, for all of Italy.

> MW_JOURNAL

> READ_ALL()