AI: The New Insider Threat Facing Organizations - Morningstar

AI: The New Insider Threat Facing Organizations  Thales 2026 Data Threat Report Finds 70% of Organizations Rank AI as Top Data Security Risk As AI systems gain broader access to enterprise data across environments, organizations must treat data visibility and encryption as core security elements. AI-enabled deepfakes and misinformation are increasing the effectiveness of identity-based attacks. Today, credential theft is the leading attack technique against cloud infrastructure (67%). Nearly 60% of companies report deepfake-driven incidents, and 48% experience damage from AI-generated misinformation Investment in AI security is growing, with 30% of companies allocating dedicated budgets; however, 53% are still relying on existing security budget According to the Thales 2026 Data Threat Report, organizations across various markets including automotive, energy, finance and retail say the rapid pace of AI-driven transformation is now their biggest security challenge. Based on the report’s research, conducted by S&P Global 451 Research, 61% cite AI as their top data security risk. The concern is not only about malicious AI, but about the access it is being granted as it shifts from a tool to a trusted insider. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260225599723/en/ ©Thales As enterprises embed AI into workflows, analytics, customer service, and development pipelines, these systems are being granted broad, automated access to enterprise data, often with fewer controls than those applied to human users in a corporate environment. “Insider risk is no longer just about people. It is also about automated systems that have been trusted too quickly,” says Sebastien Cano, Senior Vice President, Cybersecurity Products at Thales. “When identity governance, access policies, or encryption are weak, AI can amplify those weaknesses across corporate environments far faster than any human ever could.” Visibility Gaps Are Widening as AI Expands Data Reach The report reveals a troubling disconnect between AI adoption and data control. Only 34% of organizations know where all their data resides, whatever the level of criticality, and just 39% can fully classify it. Meanwhile, nearly half (47%) of sensitive cloud data remains unencrypted. As AI systems ingest and act on data across cloud and SaaS environments, limited visibility makes enforcing least-privilege access increasingly difficult, that is granting only the strictly necessary access rights. This increases the extent of exposure if credentials are compromised. Identity infrastructure is now the primary attack surface. Credential theft remains the leading attack technique against cloud management infrastructure, cited by 67% of organizations experiencing cloud attacks. At the same time, 50% rank secrets management among their top application security challenges, reflecting the growing complexity of governing machine identities, API (interfaces de programmation applicative) keys, and tokens at scale. AI Is Powering More Convincing Attacks While organizations race to adopt AI, attackers are doing the same. Nearly 60% of companies report experiencing deepfake-driven attacks, and 48% report reputational damage tied to AI-generated misinformation or impersonation campaigns. As AI introduces new risks, it also increases existing ones. Human error already contributes to 28% of breaches, and with automation layered on top, small mistakes can scale faster and spread wider. Security Investment Is Shifting, But Not at the Pace of the new Risks While organizations recognize the need to adapt, investment is not keeping pace with the rapid expansion of AI-driven access and automation. 30% now dedicate specific budgets to AI security, reflecting growing awareness. However, the majority (53%) still depend on traditional security programs built primarily for human users and perimeter-based controls. As machines increasingly authenticate, access, and act autonomously, many security strategies have yet to adjust to this shift in operating models. “As AI becomes deeply embedded into enterprise operations, continuous data visibility and protection are no longer optional,” said Eric Hanselman, Chief Analyst at S&P Global 451 Research. “Organizations must treat data security strategy as foundational to innovation, not separate from it.”i Trust Must Evolve as Machines Gain Access AI is not replacing traditional threats; rather, it is intensifying them by increasing their speed, scale, and reach. As automated systems gain broader access to enterprise data, organizations must rethink identity, encryption, and data visibility as core infrastructure. The organizations that embed strong governance into their AI strategies will be better positioned to innovate securely and avoid turning AI into their newest insider threat. For more information, please download the full report and join our webinar hosted by Eric Hanselman, Chief Analyst at S&P Global 451 Research. About Thales Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion. The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies. Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.   i Thales 2026 Data Threat Report, 2026, commissioned by Thales and conducted by S&P Global 451 Research   Press contact Thales, Media Relations Security & Cybersecurity Marion Bonnet +33 (0)6 60 38 48 92 marion.bonnet@thalesgroup.com View source version on businesswire.com: https://www.businesswire.com/news/home/20260225599723/en/ The articles, information, and content displayed on this webpage may include materials prepared and provided by third parties. Such third-party content is offered for informational purposes only and is not endorsed, reviewed, or verified by Morningstar. Morningstar makes no representations or warranties regarding the accuracy, completeness, timeliness, or reliability of any third-party content displayed on this site. The views and opinions expressed in third-party content are those of the respective authors and do not necessarily reflect the views of Morningstar, its affiliates, or employees. Morningstar is not responsible for any errors, omissions, or delays in this content, nor for any actions taken in reliance thereon. Users are advised to exercise their own judgment and seek independent financial advice before making any decisions based on such content. The third-party providers of this content are not affiliated with Morningstar, and their inclusion on this site does not imply any form of partnership, agency, or endorsement. What investors should expect on interest rates from the March policy meeting. Sarah Hansen Mar 16, 2026 Plus, what to watch in the US stock market this week. David Sekera, CFA and Susan Dziubinski Mar 16, 2026 Plus: Does private credit present a contagion risk? Fed decision on deck. Tom Lauricella Mar 16, 2026 These 12 undervalued consumer defensive stocks look attractive today. Tori Brovet Mar 16, 2026 The anything-but-AI sentiment in the market is leaving many AI stocks looking attractive. Tori Brovet and Margaret Giles Mar 12, 2026 We’ve raised our fair value estimate of Nebius stock. Javier Correonero Mar 17, 2026