- Netskope report find that almost all health workers use AI tools formed to user data
- Information protected by HIPAA, passwords, IP and more at risk
- Organizations must approve the IA tools faster
New research from Netskope has blamed health workers to have put their businesses in danger regularly by regularly trying to download sensitive and regulated data in unprecedented locations, including generative AI chatbots like Chatgpt and Gemini.
Stressing the extent of the unprecedented use of tools, the report revealed that 96% of respondents used applications that take advantage of user data for training.
In addition to the use of unprecedented GENAI tools, many violations also result from downloads to nedrive or google drive storage accounts.
Health workers put your data in danger
The figures claim 81% of all violations of data confidentiality concerned regulated health data such as information protected by HIPAA, while 19% involved passwords, source code or intellectual property.
More than two thirds of users of Genai in health care also admitted having used their personal AI accounts to send data sensitive to work, potentially alluding to their frustration concerning confused regulations and delayed processes.
Nettskope noted: “This behavior obstructs the visibility of security teams on the activity linked to the Genai among their staff”.
“Health care organizations must balance the benefits of the Genai with the deployment of security and data protection railings to mitigate these risks,” said Gianpietro Cutolo, a researcher at Netskope’s cloud, threatening laboratories in Netskope.
In the future, research requires a faster deployment of Genai applications approved by the organization in order to reduce the use of the Shadow AI – a trend that already begins to slow down, going from 87% to 71% in the past year.
Data prevention policies (DLP) are also an effective strategy for monitoring and controlling access to GENAI applications, with more than half (54%) of organizations now using DLP policies against 31% last year.
Cutolo summed up: “Health care organizations are progressing, but a continuous concentration on secure solutions and approved by the company will be essential to ensure that the data remains protected in this scalable landscape.”
