You could be downloading ‘shadow AI agents’ without knowing – how dangerous are they? | News Tech

Tech experts and business leaders have warned that ‘shadow AI agents’ are posing an increasing security threat in the UK.

AI agents are systems designed to book travel, schedule meetings, sketch charts, handle customer complaints and even socialise with each other.

But these agents are being increasingly offered new gigs – as double-agents. Not in the 007 way, though.

Instead, as Microsoft tells Metro, ‘shadow AI’ are back-alleyway bots that have no formal approval or oversight from employers or officials.

A new poll of business leaders by Microsoft, shared exclusively with Metro, shows that 84% consider shadow AI as a growing security threat.

What is a ‘shadow AI agent’?

AI agents need a lot of access and data to do their jobs – there are even guides these days on how to make them GDPR compliant.

These agents, Microsoft’s national security officer Jo Miller tells Metro, are common on personal and work phones and laptops alike.

‘We might choose to download some tools beyond Copilot, for example,’ she says of Microsoft’s AI model.

‘Some might be developed by Western companies, others elsewhere that have a different lens on how AI should be used and data protected.

‘If I choose to download three more, maybe an image generator or a research agent, I can’t have the same confidence in where these tools come from – they could be harvesting my data, selling it, misusing it and playing it back as misinformation or disinformation.’

What can shadow AI agents do?

Microsoft’s survey of 1,000 major public and private sector bosses, conducted in January, shows that bosses are quickly trying to get their heads around new-fangled tech like AI agents.

At least 62% of organisations are already deploying autonomous AI agents, almost tripling from 22% last year.

As much as shadowy AI agents are in the back of their minds, 68% expect agents to be fully integrated across their organisation within a year.

Microsoft says that as employees rush to embrace AI agents, they are creating security blind spots that bosses are addressing.

Most mainstream AI agents, Miller explains, have a level of autonomy held back by corporate guardrails – they won’t go off the rails, in other words.

But these agentic tools can be exploited by cyber criminals or ‘hostile nation states’ to conduct cyber attacks, ransomware attacks, data theft and IP theft, actions typically described as ‘adversarial’.

By ‘hostile nation states’, also called nation-state threats, Miller means groups tied to countries with not the best intentions.

Think pro-Russia groups amid Moscow’s war against Ukraine, with Miller saying there has been a rise in cyber attacks over the last four years.

AI agents used at work can sometimes be fully integrated – embedded in email services, slideshow software and other apps.

‘If I bring in another tool that will sit just outside our platform, I don’t know what back doors there might be to exfiltrate data,’ Miller says.

She adds: ‘We really need to be really deliberate and clear about what tools we’re downloading and using.

‘We don’t truly know where data might be going if we don’t understand the security parameters around a particular tool.’

What should you do about shadow AI?

The main thing, according to Miller, is to only use AI tools you can trust.

‘Like by a known vendor or supplier,’ she adds, ‘that’s well-established and has published information around how secure they are.’

‘There’s an element of faith or trust we place in AI, but we need to remember these tools are designed around the human brain.

‘So, in the same way a human brain misremembers, the same way the brain is not always factually correct, these models will not always be correct.

‘Humans in the loop adds a level of accountability and an assurance of output.’

Get in touch with our news team by emailing us at webnews@metro.co.uk.

For more stories like this, check our news page.