For an IT pro, is there anything scarier than someone saying, “There’s been an incident”? If you want to heighten that fear, imagine it is described as an “AI incident,” which could mean anything from a deleted database to a tricked chatbot. Check Point Software Technologies recently surveyed 1,042 cybersecurity and IT professionals around the world and found that more than half had reported an “AI-related security incident.” We asked IT pros to explain what an AI incident means to them, and what a high percentage of those events reveals about the IT industry’s preparedness. “The adoption is outpacing the readiness,” Paul Barbosa, VP of cloud security and SASE at Check Point, told us. Incident response. Check Point’s study, released on May 26, found that 54% of respondents experienced an AI-related security event—and just under a quarter (24%) “cannot confirm due to lack of visibility.” The Check Point report divided incidents into three categories: - Unauthorized or shadow AI usage (41%)
- AI-generated content used in an attack, such as phishing or deepfakes (37%)
- Sensitive data leaked to or through AI services (32%)
And there are agentic incidents, too.—BH |