Enterprises Face Rapid Agent AI Sprawl

Agent proliferation changes the operational and security perimeter for enterprise ML and platform teams, increasing credential, audit, and drift risk across functions. Per reporting in Towards AI, Gartner analyst Max Goss told a London CIO audience that by 2028 the average global Fortune 500 enterprise will be running more than 150,000 AI agents, up from under 15 in 2025. The article cites Okta security research that frames uncontrolled agent deployments as a distinct escalation of shadow AI, because agents with write access create incident risk beyond incorrect chat responses. Towards AI documents the common pattern where multiple teams independently deploy agents with separate prompts, credentials, and permission sets, producing inconsistent behavior and hidden attack surface.
What happened
Per reporting in Towards AI, Gartner analyst Max Goss told CIOs in London that the average global Fortune 500 company could be running more than 150,000 AI agents by 2028, compared with under 15 in 2025. The article cites Okta security research characterizing agent sprawl as the root cause of a broader shadow AI challenge, noting the higher risk when hidden agents hold production-level write access. Towards AI describes a typical enterprise pattern where marketing, sales, operations, and other teams each deploy separate agents with independent prompts, credentials, and permission structures.
Editorial analysis - technical context
The practical risks follow from observable technical failure modes. Untracked agents expand the number of service principals and API keys that must be rotated, audited, and constrained. Divergent prompt engineering across teams produces inconsistent outputs and policy drift. From a forensics perspective, lack of centralized telemetry and immutable traces makes incident reconstruction harder. These problems are familiar to security and platform engineers but amplified by agent autonomy and access scope.
Industry context
Companies confronting comparable growth in programmable automation typically address it through three levers: centralized inventory and tagging, least-privilege credential management, and unified observability into agent actions. Industry reporting in the piece emphasizes that labeling and documenting agents is necessary but insufficient; effective governance also requires automated policy enforcement and runtime controls.
What to watch
- •Emergence of enterprise agent registries and attribution metadata standards
- •Vendor features for scoped service identities and ephemeral credentials
- •Signals in security tooling for autonomous-action telemetry and anomaly detection
Editorial analysis
For practitioners, unmanaged agent proliferation converts developer convenience into an operations and security scaling problem. Inventory gaps, credential sprawl, and divergent prompt state create audit blind spots and multiply vectors for accidental or malicious actions.
For ML engineers and security practitioners, the immediate priorities are discoverability, credential hygiene, and telemetry. Observers should track product announcements and standards work that make agent identity and action traceable across teams.
Key Points
- 1Agent sprawl converts convenience into operational risk by multiplying credentials, permission sets, and divergent prompt state across teams.
- 2Untracked agents raise forensic and compliance costs because autonomous write-capable agents expand the attack surface and obscure audit trails.
- 3Effective mitigation commonly combines centralized inventory, least-privilege identities, and runtime enforcement rather than documentation alone.
Scoring Rationale
Agent sprawl poses a notable operational and security challenge for enterprise ML deployments. It is not a frontier-model milestone but materially affects platform, security, and compliance workflows for large organizations.
Sources
Public references used for this report.
Practice with real Ad Tech data
90 SQL & Python problems · 15 industry datasets
250 free problems · No credit card
See all Ad Tech problems

