1. Forum
  2. Fidonet
  3. CONSPRCY

  • 1 in 5 security breaches

    From Mike Powell@1:2320/105 to All on Thu Oct 23 08:59:59 2025
    One in five security breaches now thought to be caused by AI-written code

    Date:
    Thu, 23 Oct 2025 10:03:50 +0000

    Description:
    Nearly a quarter of production code globally is now AI-generated, and yet 69% admit to finding vulnerabilities, report finds.

    FULL STORY

    New research has claimed more than two-thirds (69%) of organizations have
    found vulnerabilities in AI-generated code, even though 24% of production
    code is now written by AI globally.

    The State of AI in Security & Development report from Aikido Security found despite companies pushing AI agendas to improve efficiency and boost output, security teams (53%), developers (45%) and mergers (42%) still get the blame when AI code goes wrong.

    Aikido says this is creating confusion over the ownership of AI-caused vulnerabilities, which could ultimately make them harder to track down and remediate.

    AI-generated code isnt perfect

    Developers didnt write the code, infosec didn't get to review it and legal is unable to determine liability should something go wrong. It's a real
    nightmare of risk, Aikido CISO Mike Wilkes noted. No one knows whos
    accountable when AI-generated code causes a breach.

    In Europe, 20% of companies have had serious incidents, while their US counterparts have seen more than twice as many (43%), which Aikido puts down
    to two factors: the higher likelihood that US developers would bypass
    security controls (72% vs 61%), and Europes stricter compliance. Still, half (53%) of European companies admit to having near misses.

    AI tools might not be the enemy, but having an overly complicated ecosystem could be. The report reveals how 90% of those using six to eight tools experienced incidents, compared to 64% of those using just one or two tools.

    Remediation time also gets prolonged for those using more tools (3.3 days for 1-2 tools vs 7.8 days for 5+ tools).

    The outlook is more positive, though. Most (96%) agree that AI will
    eventually write secure, reliable code in the next five years, with nearly as many (90%) believing AI will be able to handle penetration testing within 5.5 years.

    Better still (for the workforce), only 21% think this will happen without
    human oversight, highlighting the importance of human workers in the development process.

    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/one-in-five-security-breaches-now-thoug ht-to-be-caused-by-ai-written-code

    $$
    --- SBBSecho 3.28-Linux
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)