AI Agents Just Turned your Internal APIs into an External Risk Attack Surface.

Case study summary: cloud-based collaboration platform

A Fortune 100 technology company launched a large-scale deployment of AI agents across its SaaS collaboration platform to automate tasks like meeting scheduling, file summarization, and real-time language translation. These agents were powered by multiple MCP (Model Context Protocol) servers to manage agent context, permissions, and orchestration across APIs.

Deployment snapshot

• 6,500 AI Agents deployed across customer-facing apps and internal systems
• 14,200 AI Agent–related APIs discovered
• 18 MCP Servers actively managing agent behavior
• 7 Shadow MCP Servers surfaced by Salt that had no documented ownership or controls

High-risk alerts identified by Salt

• Credential leakage via AI debug API
• MCP server exposing sensitive config endpoints to public internet
• Agent with elevated permissions calling legacy finance APIs
• Abuse of POST endpoints without rate limiting in scheduling workflow
• Context drift across MCP instances exposing PII through unintended agent chaining

Salt’s impact

• Delivered full visibility into all agent-API behavior within 24 hours
• Detected and blocked 4 unauthorized agents in production
• Provided audit logs and forensics for a compliance investigation involving context misuse
• Enabled access governance policies to control which agents could call which APIsReduced average Mean Time to Detect (MTTD) for agent anomalies by 73%

“We had no idea how many APIs our AI agents were touching until Salt lit it up. The ability to track agent behavior in real time and uncover rogue MCP servers changed how we think about AI security.”

— CISO, Global Cloud Collaboration Provider

‍

Case study summary: global airline deploying AI agents

A leading global airline rolled out AI agents across its digital and operational infrastructure to automate trip rebooking, baggage tracking, and maintenance diagnostics. These agents relied on MCP servers to manage context, make decisions, and interact with backend systems via thousands of APIs.

Deployment snapshot

• 3,200 AI Agents deployed across mobile app, kiosk, and support workflows
• 8,750 AI Agent–related APIs identified across internal and partner systems
• 12 MCP Servers orchestrating agent behavior across use cases
• 5 Shadow MCP Servers discovered by Salt in unmanaged legacy environments

High-risk alerts identified by Salt

• Agent accessing internal maintenance APIs with production-level write access
• Unsecured debug endpoints on MCP server exposed to public internet
• PII exposure from rebooking agent due to context bleed between sessions
• Excessive API call rates from baggage-tracking agent causing system latency
• Expired tokens reused across multiple MCP instances without validation

Salt’s impact

• Mapped complete agent-to-API traffic flows across flight ops, customer service, and loyalty systems
• Discovered and isolated 5 shadow MCP servers that were interacting with sensitive systems
• Detected high-risk agent activity within 2 hours of deployment
• Implemented access control policies to prevent agents from interacting with deprecated APIs
• Enabled centralized monitoring across all MCP-managed interactions, improving audit readiness and reducing policy violations by 61%

“We thought we were just automating rebooking. Salt showed us we were exposing core flight systems through poorly scoped APIs.”

— VP of Security Engineering, Global Airline

‍