They no longer know how many agents are running inside their own walls
Fortune 500 companies average 15 AI agents today but project 150,000 within three years—a 10,000x increase—while losing track of deployment and costs. Platforms like Anthropic's Cowork democratized agent creation for non-technical employees, but companies now face uncontrolled shadow AI with hidden token expenses.
- Fortune 500 companies average 15 AI agents today, projected to reach 150,000 by 2028—a 10,000x increase
- Only 13% of organizations believe they have adequate governance for AI agents
- DaVita operates over 10,000 employee-created agents; FICO creates dozens daily
- 80% of Fortune 500 companies run active agents, but only 10% have formal management strategies
- An agent with write permissions already deleted a production database at Replit
Major corporations are rapidly deploying thousands of AI agents without proper oversight, creating uncontrolled proliferation and hidden costs. Only 13% of organizations believe they have adequate governance as agent numbers are projected to reach 150,000 per company by 2028.
In the span of three years, the Fortune 500 is about to undergo a transformation that no one quite planned for. Today, a typical large corporation runs fewer than fifteen artificial intelligence agents. By 2028, that number will balloon to over 150,000—a multiplication so staggering it reads almost like a typo. Yet when Gartner released this projection from its Digital Workplace Summit in London on April 28th, it landed alongside a more troubling statistic: only thirteen percent of organizations believe they have the governance structures in place to manage what's coming.
The proliferation has a name and a face. Anthropic's Cowork platform, along with open-source tools like OpenClaw, promised something seductive and seemingly harmless. Any employee, regardless of technical skill, could now build their own AI agents to automate routine work. No coding required. No gatekeepers. No waiting for the IT department. It was democratization in its purest form—and it worked exactly as advertised. The problem is that it worked too well.
DaVita, the American dialysis chain, discovered it now hosts more than 10,000 agents created by its own workforce, according to the company's chief technology officer Madhu Narasimhan. At FICO, the firm behind the credit score most Americans carry, new agents spawn daily across its 3,500 employees. The company's technology chief Mike Trkay described the situation without euphemism: agents are being created "literally every day, and at almost every level of the organizational hierarchy." Companies like Lyft, GitLab, and Magnum Ice Cream—owner of Ben & Jerry's—have all reached the same uncomfortable realization: they no longer know how many agents are running inside their own walls.
What was sold as liberation arrived as a management crisis. The agents don't just sit idle. They execute actions. They connect to other systems. They access databases. They make decisions at machine speed. And each one consumes tokens—the computational units that AI companies charge for with every operation. The bill arrives at the company's door, but no one measured the expense before the deployment began. Michael Friedlander, technology director for Magnum Ice Cream, laid out the sequence plainly: "There will be tokens, then there will be cost, and then you end up with: how do we manage this to be financially responsible?" DaVita built an internal platform to throttle underperforming agents and redirect spending toward the ones that deliver results—a tacit admission that the problem had shifted from technical to financial.
This mirrors a crisis the technology industry thought it had solved fifteen years ago. Back then, IT departments battled employees who installed Dropbox without permission—what the industry called shadow IT. What's happening now is shadow IT on steroids. Microsoft's Cyber Pulse 2026 report found that eighty percent of Fortune 500 companies already operate active agents, but only ten percent have a formal strategy to govern them. The report documents concrete cases of companies discovering dozens of autonomous agents running in business units that never approved or even knew about them. When an agent with write permissions deletes a production database—as already happened at Replit—the question of accountability becomes urgent and unanswerable.
The vendors face an uncomfortable position. They sold ease of use as a competitive advantage, and that same ease is now the problem their corporate customers cannot manage. Anthropic has announced new features for technology administrators: spending controls, usage analytics, audit logs, curated plugin libraries. They arrive late to a phenomenon already spiraling beyond scale. Max Goss, the senior Gartner analyst who signed the projection, warned against the temptation to simply lock down access. "If employees can't work with authorized tools, they'll bypass organizational controls and use shadow AI, which presents much greater risks," he said in London.
The real question isn't whether companies will have 150,000 agents by 2028. They probably will. The question is who pays the token bill, who audits them when something breaks, and what happens when governance fails at scale. The promise of democratization has collected its cost. The technology department pays it, quietly, while trying to inventory what its own vendors pushed it to deploy without control.
Citações Notáveis
Agents are being created literally every day, and at almost every level of the organizational hierarchy— Mike Trkay, Chief Technology Officer, FICO
There will be tokens, then there will be cost, and then you end up with: how do we manage this to be financially responsible?— Michael Friedlander, Technology Director, Magnum Ice Cream
A Conversa do Hearth Outra perspectiva sobre a história
So these aren't rogue systems. Companies actually wanted this?
They did. The pitch was irresistible—let your people build automation without waiting for engineers. It solved a real problem. The issue is that solving one problem created three others.
Like what?
Like not knowing what's running. Like tokens—the computational cost—piling up invisibly. Like agents accessing databases and making decisions no one audited. It's the same shadow IT problem from fifteen years ago, except now the shadow systems are autonomous.
Why didn't companies see this coming?
Because the vendors sold them on the benefit, not the burden. Anthropic made it genuinely easy to create agents. That was the feature. It became the flaw.
And now they're trying to add governance tools?
Too late. You can't govern what you can't see. DaVita has over 10,000 agents. FICO creates dozens daily. These companies have lost the ability to inventory their own infrastructure.
What's the actual risk?
An agent with write permissions deletes a production database. It's already happened. Or costs spiral because no one tracked token consumption. Or a rogue agent connects to systems it shouldn't. The governance gap is real.
Can they just shut it down?
That's the trap. If you lock down access, employees use shadow AI instead—unmonitored, uncontrolled, more dangerous. You're choosing between visible chaos and invisible risk.