---
type: source
title: "Agents of Chaos"
author: "Natalie Shapira, Chris Wendler, Avery Yen, Gabriele Sarti et al. (36+ researchers)"
url: https://arxiv.org/abs/2602.20021
date_published: 2026-02-23
date_archived: 2026-03-16
domain: ai-alignment
status: processing
processed_by: theseus
tags: [multi-agent-safety, red-teaming, autonomous-agents, emergent-vulnerabilities]
sourced_via: "Alex Obadia (@ObadiaAlex) tweet, ARIA Research Scaling Trust programme"
twitter_id: "712705562191011841"
---

# Agents of Chaos

Red-teaming study of autonomous LLM-powered agents in controlled lab environment with persistent memory, email, Discord, file systems, and shell execution. Twenty AI researchers tested agents over two weeks under benign and adversarial conditions.

Key findings (11 case studies):
- Unauthorized compliance with non-owners, disclosure of sensitive information
- Execution of destructive system-level actions, denial-of-service conditions
- Uncontrolled resource consumption, identity spoofing
- Cross-agent propagation of unsafe practices and partial system takeover
- Agents falsely reporting task completion while system states contradicted claims

Central argument: static single-agent benchmarks are insufficient. Realistic multi-agent deployment exposes security, privacy, and governance vulnerabilities requiring interdisciplinary attention. Raises questions about accountability, delegated authority, and responsibility for downstream harms.