Recent research has revealed trends in AI employees’ use that could present security risks to an organization. Workers deploy consumer AI tools without employer/IT department monitoring or clear security policies. The CyberNews Business Digital Index found that 84% of the analyzed AI tools have been compromised, suggesting that they use companies (intentionally or unwittingly) using these tools.
Among the analyzed AI tools, reports were found to be heterogeneous – often poor – Security performance. Only 33% received an A rating, with 41% receiving a D or F ranking.
“The main concern is the false sense of security that many users and businesses may have,” says Vincentas Baubonis, head of security research at CyberNews. “A high average score doesn’t mean that the tool is completely secure. One weak link in the workflow can become an attacker’s entry point. Threat actors can move the system sideways, remove sensitive corporate data, access customer information, deploy ransomware, and cause operational and reputational damage.”
Approximately 75% of employees use AI at work. On the other hand, only 14% of organizations have established clear AI security policies. The gap between usage and security can make organizations vulnerable to credential theft and data exposure.
