惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

L
LangChain Blog
博客园 - 司徒正美
美团技术团队
WordPress大学
WordPress大学
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
人人都是产品经理
人人都是产品经理
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
T
Troy Hunt's Blog
S
Schneier on Security
T
The Exploit Database - CXSecurity.com
P
Proofpoint News Feed
云风的 BLOG
云风的 BLOG
Engineering at Meta
Engineering at Meta
Cisco Talos Blog
Cisco Talos Blog
T
Tor Project blog
B
Blog
NISL@THU
NISL@THU
月光博客
月光博客
博客园 - 【当耐特】
AWS News Blog
AWS News Blog
cs.CL updates on arXiv.org
cs.CL updates on arXiv.org
腾讯CDC
L
Lohrmann on Cybersecurity
The Cloudflare Blog
L
LINUX DO - 最新话题
S
Security @ Cisco Blogs
S
Secure Thoughts
Spread Privacy
Spread Privacy
有赞技术团队
有赞技术团队
The Last Watchdog
The Last Watchdog
Project Zero
Project Zero
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Vercel News
Vercel News
H
Hacker News: Front Page
S
SegmentFault 最新的问题
Schneier on Security
Schneier on Security
aimingoo的专栏
aimingoo的专栏
P
Privacy & Cybersecurity Law Blog
博客园 - 三生石上(FineUI控件)
Forbes - Security
Forbes - Security
C
CXSECURITY Database RSS Feed - CXSecurity.com
I
InfoQ
T
Tailwind CSS Blog
Application and Cybersecurity Blog
Application and Cybersecurity Blog
G
GRAHAM CLULEY
W
WeLiveSecurity
小众软件
小众软件
Recorded Future
Recorded Future
Cyberwarzone
Cyberwarzone
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org

Aikido Security's Blog

GlassWorm goes native: New Zig dropper infects every IDE on your machine Aikido Attack finds multiple 0-days in Hoppscotch The cybersecurity doomerism around Mythos doesn't match what we see on the ground axios compromised on npm: maintainer account hijacked, RAT deployed Popular telnyx package compromised on PyPI by TeamPCP Aikido × Lovable: Vibe, Fix, Ship CanisterWorm Gets Teeth: TeamPCP's Kubernetes Wiper Targets Iran TeamPCP deploys CanisterWorm on NPM following Trivy compromise Security testing is validating software that no longer exists Aikido Recognized by Frost & Sullivan with the 2026 Customer Value Leadership Award in ASPM GlassWorm Hides a RAT Inside a Malicious Chrome Extension fast-draft Open VSX Extension Compromised by BlokTrooper Glassworm Strikes Popular React Native Phone Number Packages Glassworm Is Back: A New Wave of Invisible Unicode Attacks Hits Hundreds of Repositories How Security Teams Fight Back Against AI-Powered Hackers Introducing Betterleaks, an open source secrets scanner by the author of Gitleaks Trump’s 2026 cybersecurity strategy: From compliance to consequence How does AI pentesting work with compliance? What continuous pentesting actually requires Rare Not Random: Using Token Efficiency for Secrets Scanning Persistent XSS/RCE using WebSockets in Storybook’s dev server Why Determinism Is Still a Necessity in Security WAF vs. RASP vs. ADR Introducing Aikido Infinite: A new model of self-securing software How Aikido secures AI pentesting agents by design Astro Full-Read SSRF via Host Header Injection How to Get Your Board to Care About Security (Before a Breach Forces the Issue) What is Slopsquatting? The AI Package Hallucination Attack Already Happening SvelteSpill: A Cache Deception Bug in SvelteKit + Vercel Top 6 Wiz Code Alternatives Aikido recognized as Platform Leader in Latio Tech's 2026 Application Security Report From detection to prevention: How Zen stops IDOR vulnerabilities at runtime npm backdoor lets hackers hijack gambling outcomes Introducing Upgrade Impact Analysis: When breaking changes actually matter to your code Why Trying to Secure OpenClaw is Ridiculous Claude Opus 4.6 found 500 vulnerabilities. What does this change for software security? Introducing Aikido Expansion Packs: Safer defaults inside the IDE International AI Safety Report 2026: What It Means for Autonomous AI Systems Self-Securing Software: What It Is, Why It Matters, and How It Works npx Confusion: Packages That Forgot to Claim Their Own Name What Is Continuous Pentesting? Introducing Aikido Package Health: a Better Way to Trust Your Dependencies AI Pentesting: Minimum Safety Requirements for Security Testing Secure SDLC for Engineering Teams (+ Checklist) Fake Clawdbot VS Code Extension Installs ScreenConnect RAT G_Wagon: npm Package Deploys Python Stealer Targeting 100+ Crypto Wallets Gone Phishin': npm Packages Serving Custom Credential Harvesting Pages Malicious PyPI Packages spellcheckpy and spellcheckerpy Deliver Python RAT Top 10 AI Security Tools For 2026 Agent Skills Are Spreading Hallucinated npx Commands Understanding Open-Source License Risk in Modern Software The CISO Vibe Coding Checklist for Security Top 6 Graphite alternatives for AI code review in 2026 From “No Bullsh*t Security” to $1B: We Just Raised Our $60m Series B Critical n8n Vulnerability Allows Unauthenticated Remote Code Execution (CVE-2026-21858) Top 14 VS Code Extensions for 2026 AI-Driven Pentesting of Coolify: Seven CVEs Identified Top Continuous Pentesting Tools in 2026 SAST vs SCA: Securing the Code You Write and the Code You Depend On JavaScript, MSBuild, and the Blockchain: Anatomy of the NeoShadow npm Supply-Chain Attack How Engineering and Security Teams Can Meet DORA’s Technical Requirements IDOR Vulnerabilities Explained: Why They Persist in Modern Applications Shai Hulud strikes again - The golden path MongoBleed: MongoDB Zlib Vulnerability (CVE-2025-14847) and How to Fix It First Sophisticated Malware Discovered on Maven Central via Typosquatting Attack on Jackson The Fork Awakens: Why GitHub’s Invisible Networks Break Package Security Top 10 Cyber Security Tools For 2026 SAST in the IDE is now free: Moving SAST to where development actually happens AI Pentesting in Action: A TL;DV Recap of Our Live Demo The Top 7 Threat Intelligence Tools in 2026 React & Next.js DoS Vulnerability (CVE-2025-55184): What You Need to Fix After React2Shell OWASP Top 10 for Agentic Applications (2026): What Developers and Security Teams Need to Know DAST vs Pentesting v AI Pentesting: Why DAST Cannot Replace Modern Pentesting PromptPwnd: Prompt Injection Vulnerabilities in GitHub Actions Using AI Agents Top 7 Cloud Security Vulnerabilities Critical React & Next.js RCE Vulnerability (CVE-2025-55182): What You Need to Fix Now How to Comply With the UK Cybersecurity & Resilience Bill: A Practical Guide for Modern Engineering Teams Shai Hulud 2.0: What the Unknown Wonderer Tells Us About the Attackers’ Endgame SCA Everywhere: Scan and Fix Open-Source Dependencies in Your IDE Safe Chain now enforces a minimum package age before install Shai Hulud Attacks Persist Through GitHub Actions Vulnerabilities Shai Hulud Launches Second Supply-Chain Attack: Zapier, ENS, AsyncAPI, PostHog, Postman Compromised CORS Security: Beyond Basic Configuration Revolut Selects Aikido Security to Power Developer-First Software Security The Future of Pentesting Is Autonomous How Aikido and Deloitte are bringing developer-first security to enterprise Secrets Detection: A Practical Guide to Finding and Preventing Leaked Credentials Invisible Unicode Malware Strikes OpenVSX, Again AI as a Power Tool: How Windsurf and Devin Are Changing Secure Coding Building Fast, Staying Secure: Supabase’s Approach to Secure-by-Default Development OWASP Top 10 2025: Official List, Changes, and What Developers Need to Know Top 10 JavaScript Security Vulnerabilities in Modern Web Apps The Return of the Invisible Threat: Hidden PUA Unicode Hits GitHub repositorties Top 7 Black Duck Alternatives in 2026 What Is IaC Security Scanning? Terraform, Kubernetes & Cloud Misconfigurations Explained AutoTriage and the Swiss Cheese Model of Security Noise Reduction Top Software Supply Chain Security Vulnerabilities Explained The Top 7 Kubernetes Security Tools Top 10 Web Application Security Vulnerabilities Every Team Should Know What Is CSPM (and CNAPP)? Cloud Security Posture Management Explained
Shadow AI is a fear response, and banning it makes it worse
Nicholas Thomson · 2026-05-12 · via Aikido Security's Blog

Published on:

May 12, 2026

This post is based on Mackenzie's conversation with Noora Ahmed-Moshe on The Secure Disclosure podcast. Listen to the full episode.

A company lost a million dollars because someone on a litigation call ran an AI note-taker. As behavioral scientist Noora Ahmed-Moshe explains on the podcast, the tool summarized a confidential conversation and sent it to the opposing party, who used it to force a settlement on their terms. Legal experts warn that AI-generated transcripts are now routine discovery targets in lawsuits.

Note-takers are just one example. Employees are using AI in more ways than their companies know about, and the reality is, they're being forced to. According to Ahmed-Moshe, it's a fear response. "There's a general sense of panic that AI is going to come and take your job." Over 95% of employers now want to hire people with AI skills. Employees are scared to fall behind on tools because they're correctly reading the job market.

That fear is what's driving shadow AI. Employees are turning to unapproved tools because the technology is moving faster than any approval cycle can track. By the time your IT department has run a POC and granted access, your employees have already heard from a friend about something better. When you give them an approved tool that doesn't fit their workflow and then block everything else, you've just made them hide the real tools they're using.

And hiding is where the breach begins. 

Panic is now your attack surface

Studies show more than half of employees are now using unapproved AI tools at work. More than half of those are feeding sensitive company data into tools their company doesn't manage, monitor, or even know about. This means sensitive materials like legal documents, customer data, and internal strategy are all flowing into unvetted models

Even reputable tools on free-tier plans may be using that data to train models. A less reputable tool could be breached outright. And as Ahmed-Moshe pointed out, "I don't think we've really seen the risks materialize yet, because it's so new." The blast radius is still growing, and we've only seen the early returns.

Banning doesn't work

The instinct to ban all unapproved AI use is understandable. Samsung did it with ChatGPT. A security consultant posted on Reddit about a client who demanded the same, then found that their CEO had been using ChatGPT on a personal account for six months to write board decks. 

Banning the tools your employees depend on won't make them stop using them. As Ahmed-Moshe puts it, "If you try to ban AI tools in your organization, I don't see how you can succeed as a company anymore." AI tools introduce genuine security risks, but they're an essential part of how we get work done. Banning AI tools is like telling teenagers not to use their phones. They'll just do it where you can't see it.

We've been here before. Shadow IT has existed for years, and BYOD was born when companies realized that blocking personal devices was actually going to stifle productivity. They needed a way to secure them. Shadow AI is the same problem with higher stakes.

How to adapt your security posture to account for shadow AI

The organizations that close this gap are eliminating the conditions that make employees want to hide their tool usage in the first place.

What you can actually do:

  • Get visibility first: Audit what tools are being used before you start blocking anything. Aikido Endpoint monitors every developer device for the threats that sit outside your normal attack surface. 
  • Understand the workflow gaps: If employees are using unsanctioned tools, there's a reason. Find it and close it with something that actually works.
  • Create psychological safety: Open dialogue beats punishment when it comes to changing behavior. Security teams that are approachable get visibility that closed cultures never will.
  • Move faster than the approval cycle. The three-month POC-to-deployment process that worked for enterprise software doesn't work when the threat landscape and the tooling are both changing month to month. 

Shadow AI is the new phishing, a human behavior problem that technical controls can reduce but never eliminate. The panic is the vulnerability. Address that first.

{{cta}}

Last updated on:

May 12, 2026

<script type="application/ld+json">
{
 "@context": "https://schema.org",
 "@graph": [
   {
     "@type": "BlogPosting",
     "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse#article",
     "mainEntityOfPage": {
       "@type": "WebPage",
       "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse"
     },
     "headline": "Shadow AI risks start with fear, and banning makes them worse",
     "description": "Employees aren't using unapproved AI tools to cause problems. They're scared of falling behind. Here's why banning shadow AI increases your security risk, and what to do instead.",
     "image": {
       "@type": "ImageObject",
       "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse#primaryimage",
       "url": "https://www.aikido.dev/images/blog/shadow-ai-risks.png",
       "contentUrl": "https://www.aikido.dev/images/blog/shadow-ai-risks.png",
       "width": 1200,
       "height": 630
     },
     "datePublished": "2026-05-12T00:00:00+00:00",
     "dateModified": "2026-05-12T00:00:00+00:00",
     "author": {
       "@type": "Person",
       "@id": "https://www.aikido.dev/authors/nicholas-thomson",
       "name": "Nicholas Thomson",
       "jobTitle": "Senior SEO & Growth Lead",
       "worksFor": {
         "@type": "Organization",
         "name": "Aikido Security",
         "url": "https://www.aikido.dev"
       },
       "sameAs": [
         "https://www.linkedin.com/",
         "https://x.com/"
       ]
     },
     "publisher": {
       "@type": "Organization",
       "@id": "https://www.aikido.dev#organization",
       "name": "Aikido Security",
       "url": "https://www.aikido.dev",
       "logo": {
         "@type": "ImageObject",
         "url": "https://www.aikido.dev/logo.png"
       }
     },
     "keywords": [
       "shadow AI",
       "shadow IT",
       "AI security risks",
       "unapproved AI tools",
       "employee AI usage",
       "AI data leakage",
       "BYOD security",
       "AI note-taker risks",
       "security posture",
       "attack surface",
       "AI governance",
       "insider threat",
       "enterprise AI security",
       "AI compliance",
       "behavioral security"
     ],
     "articleSection": "Cybersecurity",
     "inLanguage": "en-US",
     "timeRequired": "PT5M",
     "isBasedOn": {
       "@type": "PodcastEpisode",
       "name": "AI Panic is Driving Shadow IT with Noora Ahmed-Moshe",
       "url": "https://creators.spotify.com/pod/profile/thesecuredisclosure/episodes/AI-Panic-is-Driving-Shadow-IT-w-Noora-Ahmed-Moshe-e3ivlbo",
       "partOfSeries": {
         "@type": "PodcastSeries",
         "name": "Secure Disclosures"
       }
     },
     "about": [
       {
         "@type": "DefinedTerm",
         "name": "Shadow AI",
         "description": "The use of unapproved or unsanctioned AI tools by employees within an organization without the knowledge or consent of IT or security teams."
       },
       {
         "@type": "DefinedTerm",
         "name": "Shadow IT",
         "description": "The use of information technology systems, software, and services without explicit organizational approval."
       },
       {
         "@type": "Thing",
         "name": "AI security risk",
         "sameAs": "https://schema.org/Thing"
       },
       {
         "@type": "Thing",
         "name": "BYOD",
         "description": "Bring Your Own Device — a policy allowing employees to use personal devices for work purposes."
       }
     ],
     "mentions": [
       {
         "@type": "Person",
         "name": "Noora Ahmed-Moshe",
         "jobTitle": "Behavioral Scientist",
         "sameAs": "https://www.linkedin.com/in/noora-ahmed-moshe/"
       },
       {
         "@type": "Organization",
         "name": "Samsung",
         "sameAs": "https://www.samsung.com"
       },
       {
         "@type": "SoftwareApplication",
         "name": "ChatGPT",
         "applicationCategory": "AI Assistant",
         "operatingSystem": "Web",
         "sameAs": "https://chat.openai.com"
       },
       {
         "@type": "SoftwareApplication",
         "name": "Aikido Endpoint",
         "applicationCategory": "Security Software",
         "operatingSystem": "Web",
         "url": "https://www.aikido.dev/attack/surface-monitoring-dast"
       }
     ],
     "citation": [
       {
         "@type": "WebPage",
         "name": "Samsung bans ChatGPT and other generative AI use by staff after leak",
         "url": "https://www.bloomberg.com/news/articles/2023-05-02/samsung-bans-chatgpt-and-other-generative-ai-use-by-staff-after-leak"
       },
       {
         "@type": "WebPage",
         "name": "Eavesdropping by Algorithm: Legal Risks of AI Meeting Assistants",
         "url": "https://www.babstcalland.com/news-article/eavesdropping-by-algorithm-legal-risks-of-ai-meeting-assistants/"
       },
       {
         "@type": "WebPage",
         "name": "AI Job Market Report",
         "url": "https://zapier.com/blog/ai-job-market-report/"
       },
       {
         "@type": "WebPage",
         "name": "Many workers are using unapproved AI tools at work",
         "url": "https://www.techradar.com/pro/many-workers-are-using-unapproved-ai-tools-at-work-and-sharing-a-lot-of-private-data-they-really-shouldnt"
       }
     ],
     "speakable": {
       "@type": "SpeakableSpecification",
       "cssSelector": ["h1", "h2", ".article-summary"]
     }
   },
   {
     "@type": "WebPage",
     "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse",
     "url": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse",
     "name": "Shadow AI risks start with fear, and banning makes them worse",
     "description": "Employees aren't using unapproved AI tools to cause problems. They're scared of falling behind. Here's why banning shadow AI increases your security risk, and what to do instead.",
     "isPartOf": {
       "@type": "WebSite",
       "@id": "https://www.aikido.dev#website",
       "url": "https://www.aikido.dev",
       "name": "Aikido Security"
     },
     "primaryImageOfPage": {
       "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse#primaryimage"
     },
     "breadcrumb": {
       "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse#breadcrumb"
     },
     "inLanguage": "en-US"
   },
   {
     "@type": "BreadcrumbList",
     "@id": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse#breadcrumb",
     "itemListElement": [
       {
         "@type": "ListItem",
         "position": 1,
         "name": "Home",
         "item": "https://www.aikido.dev"
       },
       {
         "@type": "ListItem",
         "position": 2,
         "name": "Blog",
         "item": "https://www.aikido.dev/blog"
       },
       {
         "@type": "ListItem",
         "position": 3,
         "name": "Shadow AI risks start with fear, and banning makes them worse",
         "item": "https://www.aikido.dev/blog/shadow-ai-risks-start-with-fear-banning-makes-them-worse"
       }
     ]
   },
   {
     "@type": "Organization",
     "@id": "https://www.aikido.dev#organization",
     "name": "Aikido Security",
     "url": "https://www.aikido.dev",
     "logo": {
       "@type": "ImageObject",
       "url": "https://www.aikido.dev/logo.png"
     },
     "sameAs": [
       "https://www.linkedin.com/company/aikido-security",
       "https://x.com/aikido_security"
     ]
   },
   {
     "@type": "FAQPage",
     "mainEntity": [
       {
         "@type": "Question",
         "name": "What is shadow AI?",
         "acceptedAnswer": {
           "@type": "Answer",
           "text": "Shadow AI refers to the use of unapproved or unsanctioned AI tools by employees within an organization, without the knowledge or oversight of IT or security teams. It is a subset of shadow IT and poses significant data security and compliance risks."
         }
       },
       {
         "@type": "Question",
         "name": "Why do employees use shadow AI?",
         "acceptedAnswer": {
           "@type": "Answer",
           "text": "Employees use unapproved AI tools primarily out of fear of falling behind in a job market where AI skills are increasingly required. When approved tools don't fit their workflows, or approval cycles move too slowly, employees turn to tools that help them do their jobs more effectively."
         }
       },
       {
         "@type": "Question",
         "name": "Why doesn't banning AI tools work?",
         "acceptedAnswer": {
           "@type": "Answer",
           "text": "Banning AI tools forces usage underground rather than eliminating it. Employees will use personal devices or accounts to access the tools they depend on. As with BYOD, the more effective approach is to create a secure, sanctioned framework that meets employees' actual workflow needs."
         }
       },
       {
         "@type": "Question",
         "name": "What are the security risks of shadow AI?",
         "acceptedAnswer": {
           "@type": "Answer",
           "text": "Shadow AI poses multiple security risks including sensitive data being fed into unvetted models, data used to train third-party AI systems, exposure through breaches of unsecured tools, and AI-generated content such as meeting transcripts becoming discovery targets in legal proceedings."
         }
       },
       {
         "@type": "Question",
         "name": "How can organizations reduce shadow AI risk?",
         "acceptedAnswer": {
           "@type": "Answer",
           "text": "Organizations should first gain visibility into what tools are being used, understand the workflow gaps driving unsanctioned usage, create psychological safety so employees feel comfortable disclosing tool usage, and accelerate their approval cycles to keep pace with the speed of AI development."
         }
       }
     ]
   }
 ]
}
</script>

Tired of false positives?

Try Aikido like 100k others.

Start Now

Get a personalized walkthrough

Trusted by 100k+ teams

Book Now

Scan your app for IDORs and real attack paths

Trusted by 100k+ teams

Start Scanning

See how AI pentests your app

Trusted by 100k+ teams

Start Testing

Get visibility into your shadow attack surface

Trusted by 100k+ teams

Try Aikido free

Full Fathom Five: The context of Anthropic’s Mythos-class public release

You never needed Mythos to find your IDORs and business logic flaws. A look at what Anthropic shipped with Fable 5, and why infosec stays a people problem at heart.

npm v12 delivers one of the biggest security improvements in years

npm v12 makes install scripts opt-in by default, closing the install-time execution path behind a year of npm supply chain worms from Nx to Red Hat.

Code is being written everywhere, and the device is the only constant

Developers are coding everywhere. AI agents, Slack bots, and MCP servers have made the developer device the biggest security blindspot.

#

Aikido Device Protection

Get secure now

Secure your code, cloud, and runtime in one central system.
Find and fix vulnerabilities fast automatically.

No credit card required | Scan results in 32secs.

此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。