The agentic commerce gold rush is on, but are merchants accounting for risk?

London, 20 May, 2026: Enterprise ecommerce merchants are racing to integrate AI-powered shopping – known as agentic commerce – at unprecedented speed, but new research suggests adoption may be happening faster than they can safely manage, leading to increased risks and potential fraud.

According to Ravelin’s Agentic Commerce and Fraud Report 2026, the technology is rapidly moving from an emerging concept to wider adoption by enterprise merchants, creating a gold-rush moment as businesses move quickly to avoid being left behind.

In fact, 3 in 4 merchants are integrating, or about to integrate, agentic protocols: 44% of those surveyed say they are already integrating agentic protocols, with a further 32% set to follow within six months. Just 6% have no plans to integrate agentic AI protocols yet. Meanwhile, 42% of respondents are going further, planning to build their own custom agents.

And merchants expect agentic to account for between 6% and 30% of transactions within three years.

But while many are rushing to adopt the new technology, less than a third of merchants (29%) report feeling very prepared to handle agentic commerce, including its security and fraud implications, according to the report.

New fraud risks

While agentic commerce promises increased exposure and more opportunities to sell products and services, it also introduces new avenues for crime and fraud.

The report highlights emerging threats, including agent hijacking, fraudulent agents impersonating legitimate AI, fake environments designed by agents to extract sensitive data, and bad actors deploying their own agents to scale their fraud and abuse.

Liability

There are also unresolved questions around liability and accountability. If an AI agent makes a fraudulent purchase, it is currently unclear who would be responsible: the merchant, the agent provider, the protocol builder or the consumer?

There is also uncertainty of who is liable if the agentic transaction is linked to fraud – when a stolen card has been used by the agent and the cardholder files a chargeback request, or when someone submits a fraudulent refund request.

A question of trust

More than half (53%) of ecommerce merchants say they trust AI agents more than human shoppers, versus 47% who trust humans more.

For merchants, one of the reasons for the adoption of agentic could be a growing distrust of their own customers, according to the report, as fraud, refund abuse, and policy exploitation continue to rise.

But expecting more from AI agents might be problematic in itself, since they introduce a wide range of new opportunities for bad actors.

The consumer view

While merchants are moving quickly, many consumers remain cautious, with more than half expressing concerns about fraud and security when shopping via AI agents.

CEO at Ravelin, Martin Sweeney, said,

Methodology

The report presents findings from Ravelin’s online survey of 1504 fraud and payments professionals working for enterprise merchants from 10 countries worldwide, along with Ravelin subject matter expert analysis of the technology and its implications.

Surveyed in January 2026, participants belonged to the C-suite or fraud/risk, finance/payments, compliance/operations or product teams of enterprises – defined as businesses with more than $50 million in annual revenue and/or over 450 employees, which sell their products either online or both online and offline.

About Ravelin

AI-native fraud prevention company Ravelin provides technology and support that helps 340+ online companies prevent evolving fraud threats and accept payments with confidence. Combining machine learning, graph networks, behavioral analysis, consortium data, and expert rules, Ravelin has been empowering businesses to draw deeper insights from their data to detect ecommerce fraud and abuse, and increase payment acceptance for 12 years. Find out more at www.ravelin.com