Risk
Agent Resource Abuse
Description
Attackers or misconfigured integrations exploit the agent runtime for costly or unauthorized use (token spend, crypto mining, spam, denial-of-wallet).
Example
Attacker hijacks an exposed agent endpoint to generate large volumes of content or mine via the agent's code-interpreter sandbox, exhausting cloud and API credits.
Assets Affected
Model Inference Endpoint
AI Platform
Agent Harness
Mitigation
- Usage quotas per identity
- abuse detection on usage patterns
- monitor for abnormal token spend
- restrict expensive tools to authenticated workflows.
Standards Mapping
- ISO: A.6.2.6, A.9.4
- OWASP agentic: ASI02
- OWASP LLM: LLM10:2025
- EU AI Act: Art. 15(5)
- DASF: Model Serving 9.7, Agents-Core 13.4
- AIUC-1: B004, B008