← Back to glossary
Glossary

Agent Hijacking

Reviewed 9 April 2026 Canonical definition

Agent hijacking is the takeover of an active AI agent session by an attacker, allowing them to redirect the agent's actions, extract its credentials, or use it as a proxy to access protected systems. It can occur through session token theft, MCP transport interception, or exploitation of insufficient authentication in the agent's control interface.

Related articles

Product releases 5 Questions Every Head of AI Should Ask About Agent Governance Product releases 5 Questions Every ML Engineer Should Ask About Agent Runtime Controls Product releases 5 Questions Every AI Product Manager Should Ask About Agent Governance

Related terms

Agent GroundingAgent HandoffAgent Health CheckAgent IdentityAgent Identity ManagementAgent Impersonation