CrowdStrike: Adversaries Hijacked AI Security Tools at 90+ Organizations in 2025. The Next Wave of AI Agents Has Write Access to the Firewall.

CrowdStrike's 2026 Global Threat Report documents adversaries compromising AI tools at more than 90 organizations in 2025. The companies that were hit were using AI tools for security. The AI tools became the attack vector.

But the report flags something worse coming. The autonomous AI agents deploying now have more privilege than the ones that were compromised last year. They are not just reading data. They have write access. They can modify configurations, change firewall rules, alter security policies, and take irreversible actions, all without a human reviewing the output.

The Vercel breach last week followed exactly this pattern: a third-party AI tool used by one employee became the door into the entire platform. Now CrowdStrike is documenting that this happened at 90 organizations, and warning that the next generation of AI agents has even more dangerous access.

The tools that were supposed to protect you are the ones being used against you. And nobody put a human in the loop.