A new report from Varonis (VRNS) reveals alarming statistics about AI-related data security risks across 1,000 organizations. The study analyzed nearly 10 billion cloud resources, encompassing over 20 petabytes of data across major platforms like AWS, Azure, and Google Cloud. Key findings show that 99% of organizations have sensitive data unnecessarily exposed to AI tools, while 90% of sensitive cloud data, including AI training data, remains accessible to AI tools. Additionally, 98% have unverified apps including shadow AI, 1 in 7 organizations don't enforce MFA across their cloud environments, and 88% have ghost users in their systems. The report emphasizes the critical need for data-centric security approaches to prevent AI-related data breaches while organizations rapidly adopt AI technologies.
Un nuovo rapporto di Varonis (VRNS) rivela statistiche allarmanti sui rischi di sicurezza dei dati legati all'IA in oltre 1.000 organizzazioni. Lo studio ha analizzato quasi 10 miliardi di risorse cloud, comprendendo più di 20 petabyte di dati su piattaforme principali come AWS, Azure e Google Cloud. I risultati chiave mostrano che il 99% delle organizzazioni ha dati sensibili esposti inutilmente agli strumenti di IA, mentre il 90% dei dati sensibili nel cloud, inclusi quelli per l'addestramento dell'IA, rimane accessibile agli strumenti di IA. Inoltre, il 98% ha app non verificate inclusa l'IA ombra, 1 organizzazione su 7 non applica l'MFA nei propri ambienti cloud, e il 88% presenta utenti fantasma nei sistemi. Il rapporto sottolinea l'importanza critica di adottare approcci di sicurezza incentrati sui dati per prevenire violazioni legate all'IA mentre le organizzazioni adottano rapidamente queste tecnologie.
Un nuevo informe de Varonis (VRNS) revela estadísticas alarmantes sobre los riesgos de seguridad de datos relacionados con la IA en 1,000 organizaciones. El estudio analizó casi 10 mil millones de recursos en la nube, abarcando más de 20 petabytes de datos en plataformas principales como AWS, Azure y Google Cloud. Los hallazgos clave muestran que el 99% de las organizaciones tienen datos sensibles expuestos innecesariamente a herramientas de IA, mientras que el 90% de los datos sensibles en la nube, incluidos los datos de entrenamiento de IA, siguen siendo accesibles para dichas herramientas. Además, el 98% cuenta con aplicaciones no verificadas incluyendo IA sombra, 1 de cada 7 organizaciones no aplica MFA en sus entornos en la nube, y el 88% tiene usuarios fantasma en sus sistemas. El informe enfatiza la necesidad crítica de enfoques de seguridad centrados en los datos para prevenir brechas relacionadas con la IA mientras las organizaciones adoptan rápidamente estas tecnologías.
Varonis (VRNS)의 새로운 보고서는 1,000개 조직에서 AI 관련 데이터 보안 위험에 대한 충격적인 통계들을 공개했습니다. 이 연구는 AWS, Azure, Google Cloud와 같은 주요 플랫폼에서 약 100억 개의 클라우드 리소스와 20페타바이트 이상의 데이터를 분석했습니다. 주요 결과에 따르면 99%의 조직이 민감한 데이터를 AI 도구에 불필요하게 노출하고 있으며, AI 학습 데이터를 포함한 민감한 클라우드 데이터의 90%가 AI 도구에 접근 가능한 상태입니다. 또한 98%가 검증되지 않은 앱을 사용하고 있고, 그림자 AI를 포함하며, 7개 조직 중 1곳은 클라우드 환경에서 MFA를 적용하지 않고, 88%는 시스템에 유령 사용자가 존재합니다. 이 보고서는 조직들이 AI 기술을 빠르게 도입하는 가운데 AI 관련 데이터 유출을 방지하기 위해 데이터 중심 보안 접근법의 중요성을 강조합니다.
Un nouveau rapport de Varonis (VRNS) révèle des statistiques alarmantes sur les risques de sécurité des données liés à l'IA dans 1 000 organisations. L'étude a analysé près de 10 milliards de ressources cloud, englobant plus de 20 pétaoctets de données sur des plateformes majeures telles qu'AWS, Azure et Google Cloud. Les principales conclusions montrent que 99 % des organisations exposent inutilement des données sensibles aux outils d'IA, tandis que 90 % des données sensibles dans le cloud, y compris les données d'entraînement de l'IA, restent accessibles aux outils d'IA. De plus, 98 % disposent d'applications non vérifiées incluant l'IA fantôme, 1 organisation sur 7 n'applique pas la MFA dans leurs environnements cloud, et 88 % ont des utilisateurs fantômes dans leurs systèmes. Le rapport souligne l'importance cruciale d'adopter des approches de sécurité centrées sur les données pour prévenir les violations liées à l'IA, alors que les organisations adoptent rapidement ces technologies.
Ein neuer Bericht von Varonis (VRNS) offenbart alarmierende Statistiken zu KI-bezogenen Datensicherheitsrisiken bei 1.000 Organisationen. Die Studie analysierte fast 10 Milliarden Cloud-Ressourcen und umfasste über 20 Petabyte Daten auf wichtigen Plattformen wie AWS, Azure und Google Cloud. Zentrale Erkenntnisse zeigen, dass 99 % der Organisationen sensible Daten unnötig KI-Tools aussetzen, während 90 % der sensiblen Cloud-Daten, einschließlich KI-Trainingsdaten, für KI-Tools zugänglich bleiben. Zudem haben 98 % nicht verifizierte Apps, einschließlich Schatten-KI, 1 von 7 Organisationen setzt keine MFA in ihren Cloud-Umgebungen durch, und 88 % haben Geisternutzer in ihren Systemen. Der Bericht unterstreicht die dringende Notwendigkeit datenorientierter Sicherheitsansätze, um KI-bezogene Datenverletzungen zu verhindern, während Organisationen KI-Technologien schnell übernehmen.
Positive
Comprehensive analysis of 10 billion cloud resources and 20 petabytes of data provides reliable insights
Company demonstrates leadership in identifying critical AI security risks
Research spans major cloud platforms and services, showing broad market coverage
Negative
Report reveals severe security vulnerabilities in most organizations' AI implementations
90% of sensitive cloud data exposed to AI tools indicates widespread security gaps
High prevalence of unverified apps and ghost users shows significant security risks
14% of organizations lack basic MFA security measures
Insights
Varonis's report positions them as leaders in AI security, potentially driving demand for their data security solutions.
Varonis (NASDAQ: VRNS) has strategically positioned itself at the intersection of two critical technology trends: the explosive growth of AI and the escalating concerns about data security. Their new research presents alarming statistics that effectively highlight the urgent market need for their solutions.
The report's findings are particularly compelling: 99% of organizations have sensitive data unnecessarily exposed to AI tools, while 90% of sensitive cloud data remains open and accessible. These statistics aren't based on subjective surveys, but derived from analyzing nearly 10 billion cloud resources across major platforms like AWS, Microsoft, Google Cloud, and numerous SaaS applications.
This research serves multiple strategic purposes for Varonis. First, it establishes them as thought leaders in the emerging field of AI security. Second, it creates market awareness about vulnerabilities that many organizations likely haven't fully considered. Third, it implicitly positions Varonis's data-centric security platform as the solution to these widespread problems.
The timing is particularly advantageous as organizations face what CEO Yaki Faitelson describes as "enormous pressure to adopt AI at warp speed." This acceleration creates a perfect opportunity for Varonis to showcase how their data security platforms can enable safe AI adoption. The report effectively communicates that AI implementation without proper data security creates substantial business risk, driving the need for solutions that Varonis provides.
The State of Data Security Report shares findings from 1,000 real-world IT environments to uncover the dark side of the AI boom
MIAMI, May 20, 2025 (GLOBE NEWSWIRE) -- A new report from Varonis reveals 99% of organizations have sensitive data exposed to AI. The State of Data Security Report: Quantifying AI’s Impact on Data Risk examines how much sensitive information is exposed and vulnerable to AI tools due to misconfigurations, overly permissive access, and other data security gaps.
“The productivity gains of AI are real — and so is the data security risk,” said Varonis CEO, President, and Co-Founder Yaki Faitelson. “CIOs and CISOs face enormous pressure to adopt AI at warp speed, which is driving the adoption of data security platforms. AI runs on data, and taking a data-centric approach to security is critical to avoid an AI-related data breach.”
Varonis analyzed data risk assessments from 1,000 organizations — providing empirical evidence of risk, not conclusions based on AI readiness surveys and polls. The dataset included nearly 10 billion cloud resources — over 20 petabytes of data — within popular IaaS and SaaS applications and services, including AWS, Microsoft Azure, Google Cloud, Box, Salesforce, Microsoft 365, Okta, Databricks, Slack, Snowflake, Zoom, and many others.
In the organizations examined, Varonis found:
99% have sensitive data unnecessarily exposed to AI tools.
90% of sensitive cloud data, including AI training data, is open and accessible to AI tools.
98% have unverified apps, including shadow AI, within their environments.
1 in 7 do not enforce MFA across SaaS and multi-cloud environments.
88% have ghost users lurking in their environments.
About Varonis Varonis (Nasdaq: VRNS) is the leader in data security, fighting a different battle than conventional cybersecurity companies. Our cloud-native Data Security Platform continuously discovers and classifies critical data, removes exposures, and detects advanced threats with AI-powered automation.
Thousands of organizations worldwide trust Varonis to defend their data wherever it lives — across SaaS, IaaS, and hybrid cloud environments. Customers use Varonis to automate a wide range of security outcomes, including data security posture management (DSPM), data classification, data access governance (DAG), data detection and response (DDR), data loss prevention (DLP), AI security, and insider risk management.
Varonis protects data first, not last. Learn more at www.varonis.com.
Investor Relations Contact: Tim Perz Varonis Systems, Inc. 646-640-2112 investors@varonis.com
News Media Contact: Rachel Hunt Varonis Systems, Inc. 877-292-8767 (ext. 1598) pr@varonis.com
What are the main findings of Varonis (VRNS) 2025 State of Data Security Report?
The report found that 99% of organizations have sensitive data exposed to AI, 90% of sensitive cloud data is accessible to AI tools, 98% have unverified apps, 1 in 7 don't enforce MFA, and 88% have ghost users in their environments.
How much data did Varonis analyze in their 2025 AI security report?
Varonis analyzed nearly 10 billion cloud resources, comprising over 20 petabytes of data across various cloud platforms including AWS, Azure, Google Cloud, and other major SaaS applications.
What percentage of organizations have sensitive data exposed to AI according to Varonis?
According to Varonis's 2025 report, 99% of organizations have sensitive data unnecessarily exposed to AI tools.
What security risks did the Varonis (VRNS) report identify in cloud environments?
The report identified several risks including widespread exposure of sensitive data to AI tools, presence of unverified apps and shadow AI, lack of MFA enforcement in 1 in 7 organizations, and ghost users in 88% of environments.
Which cloud platforms were included in Varonis's 2025 AI security analysis?
The analysis included AWS, Microsoft Azure, Google Cloud, Box, Salesforce, Microsoft 365, Okta, Databricks, Slack, Snowflake, Zoom, and many other IaaS and SaaS applications.
An email has been sent to your address with instructions for changing your password.
There is no user registered with this email.
Sign Up
To create a free account, please fill out the form below.
Thank you for signing up!
A confirmation email has been sent to your email address. Please check your email and follow the instructions in the message to complete the registration process. If you do not receive the email, please check your spam folder or contact us for assistance.
Welcome to our platform!
Oops!
Something went wrong while trying to create your new account. Please try again and if the problem persist, Email Us to receive support.
