Live Sessions #2 Securing Autonomous Agents Against Data Leakage with Mahesh Kumar Goyal

S Pattnaik — Fri, 22 May 2026 22:05:21 GMT

The shift from passive LLMs to autonomous, agentic AI introduces a fundamentally new class of security risks. Unlike traditional stateless applications, AI agents are non-deterministic—they hold memory, interact dynamically with multiple APIs, and blur the lines between data and instructions. Existing enterprise security frameworks, built around static roles and predictable user behaviors, are completely blind to the dynamic reasoning and complex attack paths these systems create.

In this session of Offensive Engineering Live Sessions, Mahesh Kumar Goyal, a Senior Data and AI Engineer at Google specializing in advanced agentic AI systems and responsible AI architectures, walks through the mechanics of governing and securing autonomous workflows. He’s speaking independently, and the views he shares are his own.

The conversation covers:

Why the non-deterministic nature of agents breaks traditional identity and access management (IAM) frameworks
How the line between data and code blurs when documents and log files become instructions for an AI
Why prompt injection is evolving into the SQL injection of the agentic era, capable of poisoning long-term memory
The critical need to treat an agent’s memory like a database with isolated, ephemeral context windows
Why relying on standard enterprise observability and EDR tools for agentic workflows is a dangerous enterprise misconception
Mandatory governance controls for production, from centralized agent inventories to unique cryptographic identities and short-lived tokens

Live Sessions #1 Attacking the Control Plane with Siri Verma Veggiraju

S Pattnaik — Wed, 13 May 2026 22:57:59 GMT

Cloud infrastructure has become the central battlefield for enterprise security, and the control plane is its most consequential layer. Attackers rarely go straight for it. They work through secondary accounts, leaked credentials, and overprivileged identities to reach it — and once they’re there, they can map, enumerate, and exfiltrate at scale. The rise of agentic AI and model context protocols is reshaping that attack surface in ways that most security teams have not yet fully reckoned with.

In this session of Offensive Engineering Live Sessions, Siri Verma Veggiraju, a tech lead at Microsoft Azure Security with hands-on experience across cloud security architecture, identity, and the control plane, walks through the mechanics of how these attacks actually unfold. He’s speaking independently, and the views he shares are his own.

The conversation covers:

How the attack landscape against cloud infrastructure has shifted with large language models and agentic AI
Why secondary accounts are the real entry point to control plane compromise
What a realistic attack chain looked like in the early days of cloud, and why the same principles still apply
How managed identities work and where organizations consistently over-privilege them
Why API proliferation is a blind spot that most security teams underestimate
What least privilege looks like when you’re securing sub-agents in a hierarchical AI architecture
How to think about the line between a security incident and a sovereignty problem

","cta":"Read full story","showBylines":true,"showDescription":true,"showImage":true,"size":"lg","isEditorNode":true,"title":"Offensive Engineering #2: Attacking the Cloud Control Plane ","publishedBylines":[{"id":493601667,"name":"S Pattnaik","bio":null,"photo_url":"https://substack-post-media.s3.amazonaws.com/public/images/ec0551e7-b37d-403d-b313-708dd8d244af_144x144.png","is_guest":false,"bestseller_tier":null},{"id":437727915,"name":"S Eben J","bio":null,"photo_url":"https://substack-post-media.s3.amazonaws.com/public/images/6ba5fa13-bad3-4292-b08d-41b086a89b6d_144x144.png","is_guest":false,"bestseller_tier":null}],"post_date":"2026-05-13T23:27:22.684Z","cover_image":"https://substackcdn.com/image/fetch/$s_!N3Yu!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F24ff3217-758b-4441-913e-3df8568ee794_3600x1885.jpeg","cover_image_alt":null,"canonical_url":"https://offensive.infosecrelations.com/p/issue2-attacking-the-cloud-control-plane","section_name":"Newsletter Issues","video_upload_id":null,"id":197581663,"type":"newsletter","reaction_count":0,"comment_count":0,"publication_id":8558701,"publication_name":"Offensive Engineering","publication_logo_url":"https://substackcdn.com/image/fetch/$s_!PLlt!,f_auto,q_auto:good,fl_progressive:steep/https%3A%2F%2Fsubstack-post-media.s3.amazonaws.com%2Fpublic%2Fimages%2F9fd8bd9b-6699-4e30-8062-980e60019033_1068x1068.png","belowTheFold":false,"youtube_url":null,"show_links":null,"feed_url":null}">

Offensive Engineering: Live Sessions

Live Sessions #2 Securing Autonomous Agents Against Data Leakage with Mahesh Kumar Goyal

Live Sessions #1 Attacking the Control Plane with Siri Verma Veggiraju