Optro Report: 82% of Firms See Surge in AI-Enabled Attacks as Shadow AI Spreads
Event summary
- Optro's report finds 82% of organizations reported increased AI-enabled attacks in the past year, primarily due to unvetted employee behavior and Shadow AI.
- Only 34% of organizations maintain a formal AI model inventory, and just 18% automatically block unauthorized AI domains.
- 56% of organizations use embedded AI in third-party tools, often unrecognized by employees as AI applications.
- Optro acquired Midship to deploy AI agents capable of automating 87% of manual controls tasks.
- 71% of surveyed professionals want agentic and automation technology for compliance and risk teams.
The big picture
Optro's findings highlight a critical shift in the threat landscape, where AI risks stem more from ungoverned employee behavior than model failures. The rapid adoption of AI outpaces governance capabilities, creating visibility and accountability gaps. Optro's acquisition of Midship positions it to capitalize on the demand for AI-powered automation in GRC, addressing a market need for more robust AI governance solutions.
What we're watching
- Governance Dynamics
- How Optro's agentic GRC system will address the accountability gap in AI governance.
- Regulatory Headwinds
- Whether 42% of CISOs' concern about insufficient AI governance focus will drive policy changes.
- Execution Risk
- The pace at which organizations integrate AI governance cross-functionally to improve security outcomes.
Related topics