Zscaler 2026 AI Threat Report: 91% Year-over-Year Surge in AI Activity Creates Growing Oversight Gap for Global Enterprises

Rhea-AI Summary

Zscaler (NASDAQ: ZS) published the ThreatLabz 2026 AI Threat Report on Jan 27, 2026, analyzing 989.3 billion AI/ML transactions from ~9,000 organizations in 2025. Key findings: enterprise AI activity rose 91% YoY across >3,400 applications, data transfers to AI/ML apps jumped 93% to 18,033 TB, and red-team testing found a median time to first critical failure of 16 minutes with 90% of systems compromised in under 90 minutes. The report warns of unmanaged embedded AI, 410 million DLP violations tied to ChatGPT, and urges AI-native Zero Trust security.

Positive

• AI/ML traffic growth of 91% YoY across >3,400 applications
• Data transfers to AI/ML apps rose 93% to 18,033 TB
• Large dataset (989.3B transactions) underpins report findings

Negative

• 100% of tested enterprise AI systems showed critical vulnerabilities
• Median time to first critical failure: 16 minutes
• 410 million DLP violations tied to ChatGPT

News Market Reaction – ZS

+2.39%

12 alerts

+2.39% News Effect

+2.6% Peak in 7 min

+$852M Valuation Impact

$36.52B Market Cap

0.2x Rel. Volume

On the day this news was published, ZS gained 2.39%, reflecting a moderate positive market reaction. Argus tracked a peak move of +2.6% during that session. Our momentum scanner triggered 12 alerts that day, indicating notable trading interest and price volatility. This price movement added approximately $852M to the company's valuation, bringing the market cap to $36.52B at that time.

Data tracked by StockTitan Argus on the day of publication.

Key Figures

AI/ML transactions analyzed: 989.3 billion Organizations analyzed: ~9,000 AI/ML activity growth: 91% year-over-year +5 more

8 metrics

AI/ML transactions analyzed 989.3 billion ThreatLabz 2026 AI Security Report dataset (Jan–Dec 2025)

Organizations analyzed ~9,000 Enterprises generating AI/ML traffic on Zero Trust Exchange

AI/ML activity growth 91% year-over-year Increase in AI/ML activity across >3,400 applications

AI supply applications 3,400+ Applications driving AI/ML transactions year-over-year

Median time to critical failure 16 minutes Red-team tests on enterprise AI systems

Data transferred to AI/ML 18,033 TB Enterprise data sent to AI/ML apps in 2025

ChatGPT data volume 2,021 TB Enterprise data transferred to ChatGPT in 2025

ChatGPT DLP violations 410 million Data Loss Prevention policy violations tied to ChatGPT

Market Reality Check

Price: $155.53 Vol: Volume 1,416,119 vs 20-da...

normal vol

$155.53 Last Close

Volume Volume 1,416,119 vs 20-day average 1,492,495, with relative volume at 0.95x ahead of the AI report. normal

Technical Shares at $214.55 are trading below the 200-day MA of $270.44 and about 36.33% under the 52-week high.

Peers on Argus

ZS gained 2.35% while scanner data shows no coordinated sector momentum. Key pee...

ZS gained 2.35% while scanner data shows no coordinated sector momentum. Key peers were mixed: FTNT +1.74%, MDB +2.34%, NET +2.41%, NTAP +0.98%, and Block (XYZ) -1.42%, suggesting a company-specific AI-security narrative rather than a broad sector rotation.

Previous AI Reports

5 past events · Latest: Jan 12 (Positive)

Same Type Pattern 5 events

Date	Event	Sentiment	Move	Catalyst
Jan 12	AI leadership hire	Positive	+0.1%	New EVP for Agentic AI Security Engineering to expand Zero Trust Exchange.
Jun 03	AI product upgrades	Positive	+0.6%	Launch of advanced AI security capabilities and generative AI protections.
Apr 24	AI threat research	Positive	+4.8%	Phishing report highlighting AI-driven cyberattacks on critical functions.
Mar 20	AI usage report	Positive	-0.2%	ThreatLabz 2025 AI report on 3,000% surge in enterprise AI/ML tools.
Sep 17	AI partnership	Positive	-0.8%	New AI and Zero Trust cybersecurity integrations with CrowdStrike.

Pattern Detected

AI-themed news has typically produced modest moves, with a mix of aligned and divergent reactions despite generally positive AI/security positioning.

Recent Company History

Over the past 18 months, Zscaler has repeatedly highlighted AI and Zero Trust as core differentiators. Prior AI reports and product updates, such as the 3,000% AI/ML usage surge study and integrations with CrowdStrike, framed Zscaler as a key AI-security provider. Price moves around these AI-tagged events have usually been small, with both gains and declines. Today’s 2026 AI Threat Report continues this pattern of research-driven messaging on AI risk and Zero Trust architecture.

Historical Comparison

+1.3% avg move · Prior AI-tagged announcements moved ZS about 1.31% on average. This AI Threat Report fits the patter...

AI

+1.3%

Average Historical Move AI

Prior AI-tagged announcements moved ZS about 1.31% on average. This AI Threat Report fits the pattern of research-focused AI security updates investors have seen before.

AI news has progressed from highlighting massive usage growth and emerging AI attacks to leadership hires and deeper integrations, reinforcing Zscaler’s AI-focused Zero Trust positioning.

Market Pulse Summary

This announcement underscores rapid AI adoption and growing security risk, with 989.3 billion AI/ML ...

Analysis

This announcement underscores rapid AI adoption and growing security risk, with 989.3 billion AI/ML transactions and 18,033 TB of data flowing into AI tools in 2025. The report reinforces Zscaler’s focus on Zero Trust and AI-native defenses as enterprises confront machine-speed threats and large-scale data exposure. In context of prior AI reports and integrations, it continues a multi-year strategy positioning the company around AI security and governance.

Key Terms

zero trust, agentic ai, data loss prevention (dlp), vpn

4 terms

zero trust technical

"requiring organizations to adopt an AI security platform built on Zero Trust"

Zero trust is a security approach that assumes no one, whether inside or outside an organization, should be automatically trusted. Instead, every access request is carefully verified before being granted, much like checking ID at every door rather than trusting someone just because they are known. For investors, it emphasizes the importance of protecting digital assets and data from potential breaches, reducing overall risk.

agentic ai technical

"In the age of Agentic AI, an intrusion can move from discovery"

Agentic AI refers to computer systems that can make their own decisions and take actions without needing someone to tell them what to do each time. It's like giving a robot a degree of independence to solve problems or achieve goals on its own, which matters because it could change how we work and interact with technology in everyday life.

data loss prevention (dlp) technical

"The scale of this risk is quantified by 410 million Data Loss Prevention (DLP) policy violations"

Data loss prevention (DLP) is software and processes designed to stop sensitive information from leaving an organization accidentally or on purpose, like a security guard that checks files and communications to prevent leaks. Investors care because data breaches or leaks can cause legal fines, customer loss and damaged reputation, which can lower revenue and share value; DLP helps reduce that financial and operational risk.

vpn technical

"Legacy firewalls and VPNs fail in dynamic AI environments, creating visibility gaps"

A VPN (virtual private network) creates a secure, private “tunnel” through the public internet that hides a device’s location and encrypts the data sent and received, like sealing a letter inside a locked envelope while it travels through the mail. For investors, VPNs matter because they reduce the risk of data breaches, support remote work and regulatory compliance, and represent a recurring-revenue market driver for companies that sell cybersecurity and networking services.

AI-generated analysis. Not financial advice.

Rapid AI adoption creates a critical security gap between innovation and security, requiring organizations to adopt an AI security platform built on Zero Trust

News Highlights 

• AI adoption is accelerating faster than enterprise oversight. Despite 200% AI usage growth in key sectors, many organizations still lack a basic inventory of AI models and embedded AI features, elevating AI governance to a board-level priority.
  
  
• Enterprise AI systems are vulnerable at machine speed. Zscaler experts found most enterprise AI systems could be compromised in just 16 minutes, with critical flaws uncovered in 100% of systems analyzed.
  
  
• AI capabilities are proliferating rapidly across the enterprise. The number of applications driving AI/ML transactions quadrupled year-over-year to more than 3,400, increasing complexity and reducing centralized visibility.
  
  
• AI is becoming a high-volume conduit for sensitive enterprise data. Data transfers to AI/ML applications surged 93%, totaling more than 18,000 terabytes which paints an expanding target on AI platforms for cybercriminals across the globe.
  
  

SAN JOSE, Calif., Jan. 27, 2026 (GLOBE NEWSWIRE) -- Zscaler, Inc. (NASDAQ: ZS), the leader in cloud security, today released the findings of the ThreatLabz 2026 AI Security Report, warning that enterprises are unprepared for the next wave of AI‑driven cyber risk, even as AI becomes embedded in business operations. Based on an analysis of nearly one trillion AI/ML transactions across the Zscaler Zero Trust Exchange™ platform between January and December of 2025, the research shows that enterprises are reaching a tipping point where AI has transitioned from a productivity tool to a primary vector for autonomous, machine-speed conflict. The report analyzes AI and ML traffic together because enterprise AI systems rely on machine learning models to operate at scale.

"AI is no longer just a productivity tool but a primary vector for autonomous, machine-speed attacks by both crimeware and nation-state," said Deepen Desai, EVP Cybersecurity at Zscaler. "In the age of Agentic AI, an intrusion can move from discovery to lateral movement to data theft in minutes, rendering traditional defenses obsolete. To win this race, organizations must fight AI with AI by deploying an intelligent Zero Trust architecture that shuts down the potential paths for the attackers of all kinds."

AI in the Enterprise: Emerging Trends and Security Issues from the 2026 Report

AI Adoption is Outpacing Oversight

AI usage now spans every business function, yet in many sectors, adoption is scaling faster than the C-suite can manage. Finance & Insurance remains the most AI-driven sector by volume, accounting for 23% of all AI/ML traffic, while the Technology and Education sectors recorded explosive year-over-year growth in transactions — 202% and 184%, respectively. Despite this, Zscaler research reveals a critical gap: many organizations still lack a basic inventory of active AI models and embedded features, leaving them unaware of exactly where sensitive data is exposed.

As Agentic AI Looms, 100% of Enterprise AI Systems Found Vulnerable to Breach at Machine Speed

While AI security discussions often focus on hypothetical future threats, Zscaler’s red team testing revealed a more immediate reality: when enterprise AI systems are tested under real adversarial conditions, they break almost immediately. In controlled scans, critical vulnerabilities surfaced in minutes, not hours. The median time to first critical failure was just 16 minutes, with 90% of systems compromised in under 90 minutes. In the most extreme case, the defense was bypassed in a single second.

As more evidence of AI‑driven attacks by cybercriminals and nation‑state espionage groups is uncovered, ThreatLabz warns autonomous and semi‑autonomous “agentic” AI will increasingly automate cyberattacks, with AI agents assuming responsibility for reconnaissance, exploitation, and lateral movement. Defenders must assume that attacks can scale and adapt at machine speed, not human speed.

AI Usage Surges 4x, Fueling New Enterprise Supply Chain Vulnerabilities

ThreatLabz found AI/ML activity increased 91% year-over-year across an ecosystem of more than 3,400 applications. This rapid adoption has left many organizations with no clear map of the AI models interacting with their data or the supply chains behind them. ThreatLabz warns that this AI supply chain is now a primary target, as weaknesses in common model files allow attackers to move laterally into core business systems.

Unmanaged Embedded AI Creates Critical Data Exposure Risks

An enormous volume of activity is happening on "standalone AI" such as ChatGPT, which logged 115 billion transactions in 2025 and Codeium, which logged 42 billion transactions. “Embedded AI,” AI capabilities built directly into everyday enterprise SaaS applications and platforms, have become one of the fastest growing sources of unmanaged risk. Because these features are often active by default and escape detection by legacy security filters, they create a back door for sensitive corporate data to flow into AI models without oversight. Among all platforms analyzed, Atlassian was a leading source of embedded AI activity, reflecting widespread use of AI-powered features within its core platforms, such as Jira and Confluence.

18,000 TB of Data Poured into AI: A New Target for Machine-Speed Attacks

In 2025, enterprise data transfers to AI/ML applications surged to 18,033 terabytes (TB)—a 93% year-over-year increase and roughly equivalent to 3.6 billion digital photos. The massive influx has transformed tools like Grammarly (3,615 TB) and ChatGPT (2,021 TB) into the world’s most concentrated repositories of corporate intelligence.

The scale of this risk is quantified by 410 million Data Loss Prevention (DLP) policy violations tied to ChatGPT alone, including attempts to share Social Security numbers, source code, and medical records. These findings signal that AI governance has transitioned from a policy discussion to an immediate operational necessity. ThreatLabz warns that as these repositories grow, they are becoming high-priority targets for cyber espionage.

Modernize AI security with Zero Trust

Legacy firewalls and VPNs fail in dynamic AI environments, creating visibility gaps and security blind spots. Zscaler replaces this complexity with AI-native security, providing the real-time visibility and guardrails needed to innovate safely.

The Zscaler Zero Trust Exchange helps organizations stay ahead of AI-powered threats by:

• Eliminating Attack Surfaces: Enforce continuous verification and least-privileged access.
• Blocking AI Threats: Inspect all traffic, including encrypted data, to stop threats in real time.
• Protecting Data Everywhere: Automatically discover and classify sensitive data across all environments.
• Neutralizing Lateral Movement: Use AI-powered segmentation to contain attackers.
• Optimizing Responses: Leverage predictive AI to accelerate security operations and posture management.
  
  

Master the new rules of AI security and download the full report

Rapidly accelerating AI adoption demands a new approach to protection. To stay ahead of evolving risks, download the full ThreatLabz 2026 AI Security Report for comprehensive threat analysis and actionable best practices.

Follow Zscaler on LinkedIn, X, and Instagram.

Research Methodology

The report draws on an analysis of 989.3 billion AI/ML transactions generated by ~9K organizations across the Zscaler Zero Trust Exchange™ from January 2025–December 2025, providing a grounded view into how AI is actually being used (and restricted) across global environments.

About Zscaler
Zscaler (NASDAQ: ZS) is a pioneer and global leader in zero trust security. The world’s largest businesses, critical infrastructure organizations, and government agencies rely on Zscaler to secure users, branches, applications, data & devices, and to accelerate digital transformation initiatives. Distributed across 160+ data centers globally, the Zscaler Zero Trust Exchange™ platform combined with advanced AI combats billions of cyber threats and policy violations every day and unlocks productivity gains for modern enterprises by reducing costs and complexity.

Media Contact
Nick Gonzalez, Director of Global Public Relations, press@zscaler.com

A photo accompanying this announcement is available at https://www.globenewswire.com/NewsRoom/AttachmentNg/f6075799-2667-4962-9e31-b5a6d3a18410

FAQ

What did the Zscaler ThreatLabz 2026 AI Threat Report find about AI usage growth for ZS?

The report found AI/ML activity increased 91% year-over-year across more than 3,400 applications in 2025.

How much enterprise data moved to AI/ML apps in 2025 according to Zscaler (ZS)?

Enterprise transfers to AI/ML applications reached 18,033 TB in 2025, a 93% increase year-over-year.

How quickly did ThreatLabz red-team tests compromise enterprise AI systems in the Zscaler report?

Median time to first critical failure was 16 minutes, with 90% of systems compromised in under 90 minutes.

What did Zscaler report about data loss prevention (DLP) incidents tied to AI like ChatGPT?

The report recorded about 410 million DLP policy violations associated with ChatGPT in 2025.

Why does Zscaler (ZS) recommend Zero Trust for AI security?

Zscaler recommends AI-native Zero Trust to restore visibility, enforce least-privilege, inspect encrypted AI traffic, and contain lateral movement.

What scale of telemetry underpins the ThreatLabz 2026 AI report for Zscaler?

Findings are based on analysis of 989.3 billion AI/ML transactions from roughly 9,000 organizations during 2025.