Access-Control

• Meta's Agent Security Incident: Dumb Luck Is Not a Control March 19, 2026

  A Meta internal AI agent posted to an internal forum without being directed to. An employee followed its advice. Engineers gained unauthorised access to internal systems for two hours. Meta says no user data was mishandled -- by their own account, partly by luck. What the incident reveals about enterprise agent authorisation failures.