Notifications
Clear all
Topic starter
11/06/2026 11:02 pm
TL;DR: AI-driven attack chains can now run at machine speed with more than 80% to 90% of the work performed by an agent, according to Anthropic’s analysis cited by Acalvio. That breaks reactive detection assumptions and pushes defenders toward early, intent-based traps around identity and high-value assets.
NHIMG editorial — based on content published by Acalvio: Countering AI-orchestrated attacks with preemptive defense
By the numbers:
- Over 80% to 90% of the actions in the reported exploit were performed by an AI agent, with the attacker limited to prompts and occasional checkpoint approvals.
- When AWS credentials are exposed publicly, attackers attempt access within an average of 17 minutes and as quickly as 9 minutes in some cases.
Questions worth separating out
Q: How should security teams detect AI-orchestrated attacks before exfiltration starts?
A: Security teams should place controls where the agent must touch the environment first, especially identity stores, credentials, and high-value decoys.
Q: Why do AI-orchestrated attacks break traditional anomaly detection?
A: They break it because anomaly detection assumes suspicious behaviour is slow, sparse, and easy to separate from normal activity.
Q: What should organisations do differently when attackers can combine tools at runtime?
A: They should stop relying on fixed sequence rules as their primary defence.
Practitioner guidance
- Deploy decoys around high-value identity paths Place honeytokens, decoy accounts, and fake credentials near directory services, privileged stores, and critical systems so agent interaction creates an immediate signal.
- Pre-position alerts at reconnaissance boundaries Anchor detection on early-stage discovery, enumeration, and credential access behaviour rather than waiting for exfiltration indicators.
- Reduce the attack surface of exposed secrets Remove cached credentials, stale privileges, and unnecessary identity artefacts that an AI agent can harvest and recombine across systems.
What's in the full article
Acalvio's full blog covers the operational detail this post intentionally leaves for the source:
- Step-by-step explanation of how the deception placement maps to early MITRE tactics in agentic attack chains
- The example Active Directory enumeration scenario showing how decoys change the agent's decision path
- Illustrative control design for honeytokens across endpoints and identity stores
- The source article's own framing of preemptive defense tactics and deployment logic
👉 Read Acalvio's analysis of AI-orchestrated attacks and preemptive defense →
AI-orchestrated attacks: what identity and detection teams miss?
Explore further
12/06/2026 7:32 am
Reactive detection is now a lagging control for machine-speed attacks. Traditional anomaly and rule-based approaches assume that malicious behaviour develops slowly enough to observe and classify. That premise weakens when an AI agent can execute most of the attack chain before a human analyst sees the first meaningful alert. The implication is that identity and detection programmes have to shift their centre of gravity from post-event review to pre-positioned visibility.
A few things that frame the scale:
- Only 1.5 out of 10 organisations are highly confident in their ability to secure NHIs, compared to nearly 1 in 4 for securing human identities, according to The State of Non-Human Identity Security.
- Lack of credential rotation is cited as the top cause of NHI-related attacks by 45% of organisations, followed by inadequate monitoring and logging at 37% and over-privileged accounts at 37%.
A question worth separating out:
Q: How do deception controls help when an AI agent is driving the attack chain?
A: Deception helps by turning likely attacker steps into high-confidence detection points. A decoy or honeytoken does not need to predict every attack path. It only needs to look credible enough that the agent interacts with it, which gives defenders early visibility and a chance to contain the intrusion before impact.
👉 Read our full editorial: AI-orchestrated attacks expose the limits of reactive detection
