According to Code42, data loss caused by insiders continues to pose a growing threat to security, and emerging technologies such as AI and generative AI (GenAI) are exacerbating the problem, necessitating a rapid response. It is said that it is showing.
Since 2021, there has been an average increase of 28% in insider data breaches, loss, exposure, and theft events per month. His 85% of respondents expect this trend to continue over the next 12 months.
Insufficient data protection
While 99% of businesses have data protection solutions in place, 78% of cybersecurity leaders admit that they still experience a breach, leak, or exposure of sensitive data. Today’s risks are increasingly driven by AI and GenAI, the way employees work, and the proliferation of cloud applications, so respondents believe that source code submitted to repositories (88%), sent to personal cloud accounts (87%) say they need more visibility into their files. , Customer Relationship Management (CRM) system data download (90%).
“Today, data is extremely portable. AI and cloud technologies are sparking new business ventures that enable employees to connect, create, and collaborate, but they also protect critical resources such as source code and IP. It makes it easier for corporate data to be compromised,” said Joe Payne, CEO of Code42.
“This year’s research highlights new challenges posed by AI, as datasets are being pushed outside organizations to train LLMs. “We also find that source code is considered the most sensitive data to protect. This is an important finding because most data protection tools fail to detect the most common source code exfiltration techniques.” Payne added.
Organizations concerned about the impact of AI on sensitive data
79% of respondents believe their cybersecurity teams lack skilled labor, and cybersecurity leaders are turning to AI (83%) and GenAI (92%) technologies to fill the talent gap. I’m looking at you. However, these are not her one-to-one replacements, and the report also warns about the potential data loss risks of these tools.
73% of cybersecurity leaders say data regulations are unclear, while 68% are not completely sure their company is compliant with new data protection laws. 98% believe data security training needs improvement, and 44% of respondents believe it needs a complete overhaul.
89% of respondents agree that their company’s sensitive data is increasingly vulnerable to new AI technologies. 87% are concerned that by entering sensitive data into their GenAI, their employees will accidentally expose it to competitors. 87% are concerned that employees are not following his GenAI policies.
Risks vary by employee age and role, with companies facing data security breaches due to Gen Z and Millennials falling victim to phishing attacks (61%), oversharing company information online (60%), They are more concerned about things like sending data to personal accounts. devices (62%), and putting sensitive data into his GenAI tools (58%).
Respondents also believe that senior management (81%) and board members (71%) pose the greatest risk to their company’s data security. This is likely because they have broad access to your most sensitive data.
Insider data loss wastes time and money
Insider-driven data breach, loss, exposure, and theft events can have a significant financial impact, with cybersecurity leaders estimating that a single event costs a company an average of $15 million. I am. Respondents spend an average of three hours per day researching insider-driven data for their events.
72% of cybersecurity leaders are concerned that an unaddressed insider breach could cost them their job. To be effective, businesses need speed and ease of investigation (42%), visibility of file content and metadata (39%), and ability to integrate with other technology solutions. Yes (38%) believe it is necessary.
Businesses need visibility into what data is being copied into GenAI tools so they can identify and remediate risks before it’s too late.