TZUTC: -0500
MSGID: 1858.consprcy@1:2320/105 2dabfa1c
PID: Synchronet 3.21a-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0
TID: SBBSecho 3.28-Linux master/123f2d28a Jul 12 2025 GCC 12.2.0
BBSID: CAPCITY2
CHRS: ASCII 1
FORMAT: flowed
New research reveals AI is fueling an 'unprecedented surge in cloud security
risks'

Date:
Fri, 19 Dec 2025 16:35:00 +0000

Description:
Businesses are rushing to deploy AI, creating overly permissioned,
misconfigured systems.

FULL STORY

Rapid enterprise adoption of Artificial Intelligence ( AI ) tools, and
cloud-native AI services, is significantly expanding cloud attack surfaces 
and putting businesses at more risk than ever before. 

This is according to the  State of Cloud Security Report , a new paper
published by cybersecurity researchers Palo Alto Networks. 

According to the paper, there are a few key problems with AI adoption; the
speed at which AI is being deployed, the permissions it is being given,
misconfigurations, and the rise in non-human identities.

Permissions, misconfigurations, and non-human identities

Palo Alto says organizations are deploying workloads faster than they can
secure them - often without full visibility into how the tools access,
process, or share, sensitive data. 

In fact, the report states that more than 70% of organizations now use
AI-powered cloud services in production, up sharply year-on-year. This speed
at which these tools are deployed is now seen as a major contributor to an
unprecedented surge in cloud security risk. 

Then, there is the problem of excessive permissions. AI services frequently
require broad access to cloud resources , APIs, and data stores - the report
shows that many organizations grant overly permissive identities to AI-driven
workloads. According to the research, 80% of cloud security incidents in the
past year were linked to identity-related issues, not malware. 

Palo Alto also pointed to misconfigurations as a growing problem, especially
in environments supporting AI development. Storage buckets, databases, and AI
training pipelines are often exposed, which is something threat actors are
increasingly exploiting, instead of simply trying to deploy malware. 

Finally, the research points to a rise in non-human identities , such as
service accounts, API keys, and automation tokens that AI systems use. In 
many cloud environments, there are now more non-human identities than human
ones, and many are poorly monitored, rarely rotated, and difficult to
attribute. 

The rise of large language models (LLMs) and agentic AI pushes the attack
surface beyond traditional infrastructure, the report concluded. 

Adversaries target the tools and LLM systems, the underlying infrastructure
supporting model development, the actions these systems take, and critically,
their memory stores. Each represents a potential point of compromise. 

======================================================================
Link to news story:
https://www.techradar.com/pro/security/new-research-reveals-ai-is-fueling-an-u
nprecedented-surge-in-cloud-security-risks

$$
--- SBBSecho 3.28-Linux
 * Origin: Capitol City Online (1:2320/105)
SEEN-BY: 105/81 106/201 128/187 129/14 305 153/7715 154/110 218/700
SEEN-BY: 226/30 227/114 229/110 134 206 300 307 317 400 426 428 470
SEEN-BY: 229/664 700 705 266/512 291/111 320/219 322/757 342/200 396/45
SEEN-BY: 460/58 633/280 712/848 902/26 2320/0 105 304 3634/12 5075/35
PATH: 2320/105 229/426