AI Security Risks Demand Budget Priority Now
▼ Summary
– Enterprises are integrating AI into sensitive workflows, increasing the need for dedicated AI security budgets, with 30% of organizations now having one.
– Deepfake attacks and AI-generated misinformation are common threats, experienced by 59% and causing reputational damage for 48% of surveyed organizations.
– Cloud assets are the most targeted resources, with credential abuse being the leading attack technique against cloud management infrastructure.
– Organizations face significant security challenges due to tool sprawl, limited data visibility, and misconfiguration, which remains the top cause of data breaches.
– Data sovereignty and quantum computing risks are shaping security planning, with many organizations evaluating post-quantum cryptography due to “harvest now, decrypt later” concerns.
Businesses are integrating artificial intelligence more deeply into their core operations, where it frequently handles confidential information across various cloud services and software platforms. This rapid adoption coincides with mounting challenges in safeguarding data, managing digital identities, and securing cloud environments, as highlighted by recent global research. The convergence of AI with critical business data creates a pressing need for dedicated security strategies and funding.
Allocating specific funds for AI security is gaining traction, with a notable rise in organizations establishing separate budgets for this purpose. While many still finance AI projects through general cybersecurity funds, this practice inherently links AI risk management to the organization’s broader digital defense programs. The increasing prevalence of dedicated budgets signals a maturing recognition of AI’s unique threat landscape.
Threat models now routinely account for sophisticated dangers like deepfakes and AI-driven misinformation campaigns. A significant majority of organizations report encountering deepfake attacks, while nearly half have faced reputational harm from false information generated by AI. These specific threats exist alongside widespread unease about the overall security of AI development environments and the data pipelines that train these powerful models.
Cloud platforms remain a favorite target for cyber attackers. Cloud-based storage, applications, and management infrastructure consistently rank as the most frequently attacked resources. The typical enterprise now relies on multiple cloud providers and dozens of software-as-a-service applications, dramatically expanding the number of access points, user identities, and data repositories that require vigilant protection.
Attacks on cloud management systems frequently involve compromised credentials, including stolen secrets and passwords. Vulnerabilities in third-party software and exposed application programming interfaces also contribute significantly to the risk, underscoring how crucial identity and access management have become. Protection measures like encryption are not applied uniformly, with less than half of sensitive cloud data being encrypted, revealing inconsistent security practices across different workloads and storage systems.
Many data security programs suffer from tool sprawl, with most companies using a complex array of point solutions. This fragmentation complicates policy enforcement and obstructs a unified view of security telemetry across the entire IT estate. Visibility into where data actually resides is often limited, with only a third of organizations claiming full knowledge. Data tracking across hybrid environments frequently depends on incomplete inventories and inconsistent classification schemes.
The management of encryption keys is similarly dispersed, with nearly half of enterprises using five or more separate systems. Organizations often employ a mix of enterprise-managed keys and provider-managed services, leading to varied control models internally. Configuration errors and human mistakes continue to be the leading cause of data breaches, highlighting the ongoing importance of governance and strict access controls in cloud and SaaS deployments.
Perceptions of security incidents can vary dramatically within an organization. Senior executives, such as CEOs and presidents, report far lower rates of experiencing breaches compared to the broader employee base. This discrepancy likely points to differences in visibility and internal reporting protocols rather than an actual absence of incidents.
Data sovereignty considerations are increasingly shaping technical architecture. The primary motivations include ensuring data portability and maintaining complete control over software and information. The physical location of cloud infrastructure is a key factor for nearly half of all organizations when deciding where to place certain workloads.
Planning for future cryptographic threats is advancing from theoretical discussion to active preparation. The strategy of harvesting encrypted data now to decrypt it later with more powerful computers is a major concern. A growing number of companies are already testing post-quantum cryptographic algorithms, indicating early-stage efforts to transition their security frameworks in anticipation of quantum computing advancements.
(Source: HelpNet Security)
