As enterprises accelerate the use of artificial intelligence, cloud security teams are facing pressure that many admit they are struggling to manage. A newly released cloud security report from Palo Alto Networks outlines how the rapid expansion of AI workloads has widened security gaps across cloud environments, often faster than organizations can respond.
Most of the organizations that were surveyed reported according to the research that they had a security incident involving AI systems at least once in the last year. In the process of companies scaling cloud infrastructure for AI development, they are also expanding their exposure through APIs, identity systems, and internal networks. Therefore, attackers are now less focusing on perimeter defenses and more on exploiting weak internal controls.
Meanwhile, development teams are in a heavy reliance on AI-assisted coding tools for a faster delivery. Although this method enhances productivity, it also raises the possibility of risks. The majority of the teams are deploying code on a weekly or even daily basis. Nevertheless, only a small fraction of them are capable of fixing security weaknesses at the same rate. Hence, there is often insecure code that is allowed to stay in production for a longer time than the security teams’ preferred.
Identity management is still a source of problems. A lot of organizations are still permitting overly broad access privileges, which makes it easier for lateral movement when attackers get a foothold.
Meanwhile, APIs have emerged as a favored entry point because modern AI systems depend on them to connect services and data sources. Therefore, attackers increasingly target API configurations rather than traditional endpoints.
Operational complexity further complicates the situation. Most organizations manage a large number of cloud security tools from multiple vendors. This fragmentation slows investigation and response. In addition, separation between cloud security teams and security operations centers delays remediation efforts, especially during high pressure incidents.
Rather than framing the issue as a tooling problem alone, the report highlights a structural shift. As attackers use automation and AI to increase attack speed, defenders must adjust how they organize cloud security work. Going forward, organizations will need tighter coordination between development, cloud infrastructure, and security operations. Otherwise, the gap between innovation and protection will continue to grow.
