NIST Announces AI Agent Standards Initiative

On February 17, NIST’s Center for AI Standards and Innovation (CAISI) announced a new project to promote agentic AI innovation and build public trust in agentic technology. NIST will collaborate with the National Science Foundation (NSF) and the Information Technology Laboratory (ITL) on the initiative, with the goal of “fostering an emerging ecosystem of industry-led AI standards and protocols while cementing U.S. dominance at the technological frontier.”

Industry members can get involved by:

• Commenting on the NIST National Cybersecurity Center of Excellence’s (NCCoE) Concept Paper: Accelerating the Adoption of Software and AI Agent Identity and Authorization by April 2, 2026.

• Submitting interest in CAISI’s listening sessions on Barriers to AI Adoption before March 20, 2026.

💻 Read more about NIST’s AI Agent Standards Initiative on BD Emerson’s Blog

Identity Failures Emerge as Top Risk in 2026

So far this year, we’ve seen a surge in disruptive cyber incidents across industries, involving exploited credential weaknesses and identity‑driven vulnerabilities:

• Attackers gained unauthorized access to France’s National Bank Account Registry (FiCOBA) and exposed sensitive records linked to roughly 1.2 million accounts by compromising a single internal credential.

• Hackers accessed the contact details and personal information of an estimated 1.4 million Betterment customers and sent them convincing fake crypto-investment messages, increasing the risk of phishing and identity theft. Account passwords and financial systems were not compromised.

• Substack recently discovered that unauthorized access to its systems in October 2025 had exposed the contact details, including email addresses and phone numbers, of more than 663,000 users.This prompted warnings about potential phishing risks. Sensitive financial data was not compromised.

• Advantest Corporation, a leading semiconductor test supplier, reported that an intruder gained access to certain parts of the company’s network and may have deployed ransomware in February. No data theft has been confirmed as of yet.

This pattern aligns with findings from the CyberProof 2026 Report, which emphasized that identity compromise has become the dominant attack vector across global sectors. With valid credentials, attackers can easily bypass firewalls, endpoint detection, and network segmentation, moving through systems nearly undetected.

How BD Emerson Can Help You Reduce Identity-Based Risks

Our security experts have experience strengthening identity controls for companies of all sizes, across a diverse array of industries: healthcare, education, government, software, energy, manufacturing, critical infrastructure, and more. We are trusted advisors who understand the importance of aligning security controls with business objectives.

We’ll help your team:

• Implement and document identity access management controls like phishing-resistant MFA, identity verification, and controls that follow the principle of least privilege

• Integrate continuous monitoring practices by using identity threat detection and response tools (ITDR)

• Create and conduct security awareness trainings and incident response protocols

• Analyze the security posture of your cloud environments to reduce exposure

• Examine Open Authorization integrations, API keys, and third-party SaaS connections for weaknesses

🔗 Contact our team and start your customized security assessment

Stay Protected with Tech in Flux

Even as AI-driven threats and sophisticated attacks reshape the digital landscape, our team is here to guide you with proven expertise at every step.

Connect with our team