An analysis revealed that employees in the US and UK frequently use generative AI tools developed in China without security team oversight. This use resulted in sensitive data uploaded to these platforms, with significant implications for compliance and data privacy. Nearly 8 percent of employees used these tools, leading to 1,059 users uploading over 17 megabytes of content, including source code and financial reports. DeepSeek emerged as the most utilized tool, responsible for 85 percent of sensitive data incidents, indicating a need for better governance regarding AI tool adoption in corporate settings.
Harmonic Security's analysis indicates extensive use of generative AI tools from China by employees in the US and UK, often without security oversight.
The study highlights the transfer of sensitive data to platforms hosted in China, posing risks to compliance and commercial confidentiality.
Nearly 8 percent of employees used China-based GenAI tools, with significant content leaks—including source codes and confidential documents.
DeepSeek was identified as the most commonly used tool, linked to 85 percent of incidents involving sensitive data mishandling.
Collection
[
|
...
]