Organizations rushing to implement AI are neglecting security and governance, IBM claims, with attackers already taking advantage of lax protocols to target models and applications.<\/p>\n
The findings come from Big Blue’s Cost of a Data Breach Report 2025<\/a> report, which shows that AI-related exposures currently make up only a small proportion of the total, but these are anticipated to grow in line with greater adoption of AI in enterprise systems.<\/p>\n Based on data reported by 600 organizations globally between March 2024 and February 2025, IBM says 13 percent of them flagged a security incident involving an AI model or AI application that resulted in an infraction.<\/p>\n Almost every one of those breached organizations (97 percent) indicated it did not have proper AI access controls in place.<\/p>\n About a third of those that experienced a security incident involving their AI suffered operational disruption and saw criminals gain unauthorized access to sensitive data, while 23 percent said they incurred financial loss as a result of the attack, with 17 percent suffering reputational damage.<\/p>\n Supply chain compromise was the most common cause of those breaches, a category that includes compromised apps, application programming interfaces (APIs), and plug-ins. The majority of organizations that reported an intrusion involving AI said the source was a third-party vendor providing software as a service (SaaS).<\/p>\n IBM’s report draws particular attention to the danger of unsanctioned or so-called shadow AI, which refers to the unofficial use of these tools within an organization, without the knowledge or approval of the IT or data governance teams.<\/p>\n Because shadow AI may go undetected by the organization, there is an increased risk that attackers will exploit its vulnerabilities.<\/p>\n The survey for the report found that most organizations (87 percent) have no governance in place to mitigate AI risk. Two-thirds of those that were breached didn’t perform regular audits to evaluate risk and more than three-quarters reported not performing adversarial testing on their AI models.<\/p>\n This isn’t the first time that security and governance have been raised as issues when it comes to corporate AI rollouts. Last year, The Register reported that many large enterprises had hit pause<\/a> on integrating AI assistants and virtual agents created with Microsoft Copilot because these were pulling in information that employees shouldn’t have access to.<\/p>\n