What are autonomous agent risks in AI?

Autonomous agents that take real-world actions without per-action human approval can cause irreversible harm through cascading actions. Current EU AI Act human oversight provisions may be insufficient for high-speed agent operations.

What is model collapse?

Model collapse occurs when AI models trained on AI-generated data progressively lose output quality and diversity. Research shows this is an inherent mathematical tendency when training data contains model-generated content.

Are emerging AI risks covered by the EU AI Act?

Partially. The GPAI systemic risk provisions and transparency requirements address some emerging risks, but autonomous agent behavior, cross-system interactions, and epistemic risks have minimal regulatory coverage.

How often should AI risk assessments be updated?

Quarterly updates are recommended given the pace of AI development. ISO/IEC 42001 requires periodic risk reviews, and emerging risk categories demand more frequent reassessment than traditional IT risks.

What is epistemic risk from AI?

Epistemic risk refers to AI-generated content degrading collective knowledge quality through plausible but inaccurate information, creating feedback loops where errors are amplified across the information ecosystem.

Quick answer

Emerging AI risk categories include autonomous agent risks, model collapse from synthetic data feedback loops, AI-enabled social engineering at scale, emergent capabilities in large models, and cross-system interaction failures, many of which are not yet fully addressed by existing regulatory frameworks.

Updated June 2026 · MmowW AI Compliance

Emerging AI Risk Categories: Novel Threats and Assessment Approaches

Beyond Established Risk Taxonomies

Current AI risk frameworks, including the EU AI Act, NIST AI RMF, and ISO/IEC 23894, were designed primarily around supervised machine learning systems with defined input-output relationships. The rapid evolution of generative AI, autonomous agents, and multi-modal systems has created risk categories that existing taxonomies capture imperfectly or not at all. Organisations performing AI risk assessments must supplement established frameworks with analysis of these emerging categories.

Emerging Risk Categories

Risk Category	Description	Current Regulatory Coverage
Autonomous agent risk	AI systems that take actions in the world without per-action human approval	Partial (EU AI Act Article 14 human oversight)
Model collapse	Degradation when models are trained on AI-generated data	Minimal (Article 10 data governance touches on quality)
AI-enabled social engineering	Personalised phishing, deepfake impersonation at scale	Partial (Article 50 transparency for deepfakes)
Emergent capabilities	Unexpected abilities that appear at scale in large models	Partial (GPAI systemic risk provisions Articles 51-55)
Cross-system interaction	Unpredictable behavior when multiple AI systems interact	Minimal
Epistemic risk	AI-generated information degrading collective knowledge quality	Minimal (Article 50 content labeling)
Value lock-in	AI systems embedding current values that become resistant to change	Not addressed

Autonomous Agent Risks

AI agents that browse the web, execute code, manage files, and interact with APIs on behalf of users create risks that are qualitatively different from those of recommendation systems or classifiers. An autonomous agent can cause irreversible harm through a sequence of individually reasonable actions. The EU AI Act's human oversight requirements (Article 14) assume human-in-the-loop or human-on-the-loop designs, but autonomous agents may operate at speeds and complexities that make real-time oversight impractical.

Risk mitigation for autonomous agents requires sandboxing (limiting the actions agents can take), permission hierarchies (requiring explicit approval for high-impact actions), audit logging of all agent actions, and rollback capabilities for reversible actions.

Model Collapse and Synthetic Data Loops

As AI-generated content proliferates on the internet, new models trained on web-scraped data increasingly consume content generated by earlier models. Research published in Nature (Shumailov et al., 2024) demonstrates that iterative training on AI-generated data leads to model collapse: progressive degradation of output quality and diversity. This risk is systemic because it affects all models trained on common data sources.

Organisations should document the provenance of training data, filter AI-generated content from training datasets where possible, and monitor model performance for signs of capability degradation over successive training runs.

AI-Enabled Social Engineering

Generative AI dramatically reduces the cost and increases the quality of social engineering attacks. Personalised phishing emails, voice cloning for vishing attacks, and deepfake video for impersonation are now accessible to attackers with minimal technical skill. The EU AI Act Article 50(4) requires that deepfakes be labeled, but this obligation applies to legitimate users and is easily circumvented by malicious actors.

Assessment Approaches for Novel Risks

Scenario analysis: develop specific threat scenarios for each emerging risk category rather than relying solely on historical incident data
Red teaming: engage adversarial testing teams to probe AI systems for novel failure modes
Horizon scanning: monitor academic research, incident databases, and threat intelligence for newly identified AI risks
Cross-functional assessment: involve security, legal, ethics, and domain experts in AI risk identification workshops
Dynamic risk registers: update AI risk registers quarterly rather than annually to capture rapidly evolving threats

Implications for Compliance

Organisations relying solely on EU AI Act classifications may underestimate their risk exposure. The Act's Annex III categories are static and were drafted before many of these risks were well understood. Proactive organisations should maintain a supplementary risk register covering emerging categories, even where regulatory obligations have not yet crystallised. ISO/IEC 42001 Clause 6.1 (actions to address risks and opportunities) provides the management system hook for incorporating emerging risks into established governance processes.

Check your AI compliance readiness — free.

Take the Readiness Check 3 minutes · 10 questions · no signup required

This article is for informational purposes only and does not constitute legal advice. Regulatory requirements change frequently — verify current rules with official sources. Built by Sawai Gyoseishoshi Office, Hiroshima, Japan.