TL;DR: Key Takeaways

• The Agentic Shift: APIs have evolved into the “Agentic Action Layer,” serving as the operational backbone for autonomous AI agents.
• A Massive Visibility Crisis: Nearly half of organizations (48.9%) are entirely blind to machine-to-machine traffic and cannot monitor their AI agents.
• The Boardroom Mandate: While 78.6% of security leaders report increased executive scrutiny of AI risks, only 23.5% find their legacy security tools effective.
• The Path Forward: Securing AI requires abandoning legacy Web Application Firewalls in favor of a platform that offers Agentic Security Posture Management and Agentic Detection and Response.

The era of human-centric API consumption is officially ending.

Over the past year, enterprises have rapidly transitioned from simply experimenting with Generative AI to deploying autonomous AI agents that drive core business operations. These agents act as digital employees. They utilize Large Language Models (LLMs) for reasoning, Model Context Protocol (MCP) servers for connectivity, and internal APIs for execution.

This evolution has fundamentally altered the enterprise attack surface. According to the newly released 1H 2026 State of AI and API Security Report, which surveyed over 300 security leaders, a new architectural reality has emerged: You cannot secure AI without securing the APIs that power it.

APIs have become the operational backbone, or the “Agentic Action Layer,” of the AI economy. But as our 1H 2026 data reveals, security maturity is struggling to keep pace with this agentic innovation, creating dangerous blind spots across the enterprise.

The “Non-Human” Visibility Crisis: As autonomous agents begin consuming the majority of enterprise APIs, traditional session monitoring is failing. The survey revealed a profound visibility crisis regarding machine-to-machine traffic:

• 48.9% of organizations are essentially blind to non-human traffic, unable to monitor what their autonomous agents are doing.
• 48.3% cannot effectively differentiate legitimate AI agents from malicious bots.

Because these agents operate at machine speed and can improvise their own workflows, legacy security tools are left entirely in the dark. In fact, organizations are building AI-driven platforms at an unprecedented rate, with nearly 47% of respondents reporting API growth of 51-100% in the past year alone.

This massive expansion of machine-to-machine communication is creating dangerous “Shadow AI” blind spots. Autonomous agents are dynamically creating undocumented endpoints or leveraging MCP servers outside the security teams’ view, exposing sensitive data without any formal oversight. This lack of visibility has direct business consequences. The report found that 47% of organizations have had to delay a production release due to concerns about securing APIs exposed to these autonomous systems.

The Boardroom Mandate and the Legacy Failure. The risks associated with autonomous AI are not going unnoticed by executive leadership. The survey highlights a massive boardroom mandate to secure these workflows:

• 78.6% of security leaders report increased executive scrutiny of AI security risks.
• 68.8% of boards are concerned about sensitive data leakage through AI prompts or models.
• 38.8% are specifically worried about autonomous agents acting without human oversight.

Despite this intense scrutiny, security teams admit to a severe confidence gap. Crucially, only 23.5% of respondents find their existing security tools “Very effective” at preventing attacks.

Legacy Web Application Firewalls (WAFs) and basic API Gateways were built to monitor human developers and predictable user sessions. They rely on static signatures and rate limits, making them architecturally incapable of parsing the unpredictable, logic-based actions generated by autonomous agents. Furthermore, they are completely blind to new agent-based infrastructure, such as MCP servers.

Securing the Full Agentic Stack. To safely scale AI innovation, organizations must abandon outdated perimeter defenses and adopt a purpose-built approach. You cannot secure AI agents without securing the full stack they invoke. If one pillar of the Agentic Action Layer is missing from your security strategy, the entire stack is vulnerable.

The Salt Agentic Security Platform is the industry’s first dedicated solution for securing interactions between AI agents and enterprise data. It provides a unified way to discover, visualize, and protect the infrastructure that powers agent behavior through two core capabilities:

1. Agentic Security Posture Management (AG-SPM) AG-SPM provides continuous discovery and governance of the agentic lifecycle from code to runtime. By continuously mapping the multi-pronged relationships between LLMs, MCP servers, and foundational APIs, Salt builds a dynamic Agentic Security Graph. This allows organizations to eliminate “Shadow MCP” servers and ensure every agent operates within the logical boundaries of its intended business function. Furthermore, it establishes regulatory guardrails aligned with emerging standards, such as the EU AI Act, ensuring that autonomous interactions remain traceable and auditable.

2. Agentic Detection and Response (AG-DR) Because agent behavior is dynamic and non-deterministic, Salt moves beyond static signatures to identify malicious intent. AG-DR establishes agentic-aware baselines for LLM connectivity to detect anomalous patterns, such as mass data pulls or unauthorized tool usage. By correlating 100% of traffic back to the unique agentic identity, Salt performs Identity-Aware Intent Analysis. This catches the logic-based attacks that individual packet inspection misses, and immediately interrupts machine-speed attacks by providing automated, real-time blocking triggers.

The transition to an agentic enterprise requires a corresponding evolution in security visibility. While model-centric tools focus on prompt filtering, Salt secures the infrastructure where actions are actually taken.

If you want to learn more about Salt and how we can help you, please contact us, schedule a demo, or visit our website. You can also get a free API Attack Surface Assessment from Salt Security’s research team and learn what attackers already know.

*** This is a Security Bloggers Network syndicated blog from Salt Security blog authored by Eric Schwake. Read the original post at: https://salt.security/blog/the-era-of-agentic-security-is-here-key-findings-from-the-1h-2026-state-of-ai-and-api-security-report