💼VentureBeat•Stalecollected in 10h
Closing Data Security Maturity Gap

💡35% breaches from shadow data—secure your AI pipelines now (VentureBeat analysis).
⚡ 30-Second TL;DR
What Changed
35% of 2025 breaches from unmanaged shadow data (IBM)
Why It Matters
Enterprises gain better breach prevention by addressing visibility gaps, vital for AI workflows handling sensitive training data.
What To Do Next
Audit AI datasets for shadow PII using classification tools like those from IBM.
Who should care:Enterprise & Security Teams
Key Points
- •35% of 2025 breaches from unmanaged shadow data (IBM)
- •Prioritize data inventory and classification for PII, financial, health info
- •Embed protections in full data lifecycle, not just perimeters
- •Address chaotic data across formats like databases, docs, AI models
- •Human behaviors like emailing spreadsheets introduce unpredicted risks
🧠 Deep Insight
AI-generated analysis for this event.
🔑 Enhanced Key Takeaways
- •The rise of 'Data Security Posture Management' (DSPM) platforms has become the primary industry response to shadow data, shifting focus from network-centric security to data-centric discovery and risk assessment.
- •Generative AI adoption has exacerbated the shadow data problem, as LLMs often ingest unstructured data from unmanaged repositories, creating new vectors for PII leakage during model training and inference.
- •Regulatory frameworks like the EU AI Act and updated GDPR enforcement are increasingly mandating automated data lineage and provenance tracking, forcing organizations to move beyond manual data classification.
📊 Competitor Analysis▸ Show
| Feature | DSPM Platforms (e.g., Wiz, Dig Security) | Traditional DLP | Data Governance Tools (e.g., Collibra) |
|---|---|---|---|
| Primary Focus | Data discovery & risk posture | Perimeter/Endpoint control | Data cataloging & compliance |
| Visibility | Deep, automated, multi-cloud | Limited to managed endpoints | Metadata-driven, manual |
| AI Readiness | High (AI-specific risk scanning) | Low | Moderate |
| Pricing Model | Consumption/Data volume based | Per-user/Per-endpoint | Enterprise licensing |
🛠️ Technical Deep Dive
- •DSPM architectures utilize agentless scanning via cloud APIs (e.g., AWS IAM roles, Azure Service Principals) to perform deep packet and file inspection without impacting production latency.
- •Classification engines leverage Natural Language Processing (NLP) and Named Entity Recognition (NER) models to identify PII, PHI, and PCI data across unstructured formats like PDFs, JSON, and Parquet files.
- •Data lineage mapping is achieved through graph database integration, tracking data flow from source (e.g., S3 buckets) to destination (e.g., AI training sets) to identify unauthorized access paths.
- •Automated remediation workflows are triggered by policy-as-code engines, which can automatically apply encryption, revoke IAM permissions, or quarantine sensitive files upon detection of policy violations.
🔮 Future ImplicationsAI analysis grounded in cited sources
Automated data classification will become a mandatory compliance requirement for AI-driven enterprises by 2027.
Increasing regulatory pressure regarding AI transparency and data privacy will render manual classification processes insufficient for audit requirements.
Shadow data discovery will shift from periodic scanning to real-time, event-driven monitoring.
The velocity of data creation in cloud-native environments makes static, point-in-time snapshots obsolete for effective risk mitigation.
⏳ Timeline
2021-06
Emergence of the DSPM category as cloud-native security vendors begin focusing on data-centric visibility.
2023-10
Industry-wide pivot toward securing AI training pipelines as a core component of data security maturity.
2025-01
IBM and other major security analysts report that unmanaged shadow data accounts for over one-third of all enterprise breaches.
📰
Weekly AI Recap
Read this week's curated digest of top AI events →
👉Related Updates
AI-curated news aggregator. All content rights belong to original publishers.
Original source: VentureBeat ↗