AI in the Cloud may lead to Cyberattacks!

Darkreading.com reported that “Research finds that organizations are granting root access by default and making other big missteps, including a Jenga-like building concept, in deploying and configuring AI services in cloud deployments.” The March 18, 2025 article entitled “AI Cloud Adoption Is Rife With Cyber Mistakes” (https://www.darkreading.com/cloud-security/ai-cloud-adoption-cyber-mistakes) included these comments:

A high percentage of organizations are deploying artificial intelligence (AI) services in the cloud that grant root access by default, one of the many misconfigurations that organizations are committing in their early use of AI within cloud environments. The result is the exposure of many of these services to excessive security risk, new research has found.

In fact, the deployment of AI services in cloud environments is tracking along the same lines as how those service-based environments were initially deployed, with organizations making similar and common security mistakes. These issues should be remedied sooner rather than later to create more secure environments and reap the benefits of AI in the enterprise, according to the "Tenable Cloud AI Risk Report 2025," published today.

These issues come most often in the form of misconfigurations, public exposure, and excessive permissiveness, which are making cloud AI services vulnerable to cyber threats and thus run counter to the goals of using AI to its full potential.

Is anyone surprised?