In this report, we examine how organizations’ digital estates are evolving under the influence of AI, and the security and data protection risks arising from this evolution. AI is now interlaced with the fabric of daily workflows, from agentic systems and SaaS APIs to the personal apps employees lean on when they think no one is watching.
The researchers have also examined how attackers are exploiting trusted cloud platforms to deliver malware inside Indian organizations, and why data policy violations are evolving in a manner that ought to prompt every software developer to take notice.
The shift from shadow AI: For a long time, shadow AI, where employees used personal AI accounts for work, was running rampant. However, we have seen a major shift occurring within Indian organizations over the past year, with the use of managed AI tools jumping from 30% to 77%. While the use of personal accounts dropped nearly by half in the same period, challenges remain. Nearly one in five users is still using both personal and enterprise accounts at work, indicating that governance alone is insufficient. Organizations aiming to eliminate shadow AI completely must remove the need for employees to use personal accounts by ensuring enterprise tools are just as frictionless as those people use at home.
Claude is beating ChatGPT: ChatGPT is still the king of the hill in India, and used in 88% of the organizations we track. But Anthropic’s Claude is making an incredible run, now sitting at 84% adoption, compared to a little over 30% a year ago. The real story, though, is in the plumbing. When we look at where developers are actually connecting their internal systems via APIs, Anthropic has already pulled ahead. 85% of organizations are plugged into Anthropic’s API, eclipsing OpenAI at 64%.
AI is ubiquitous: In India, 82% of workers are directly engaging with AI apps, 97% are using SaaS tools that use AI in the background, and 92% are using apps that leverage user data for training models. While AI adoption continues to rise, it is showing signs that it may be reaching a plateau.
Code is the new crown jewel at risk: Over the last 12 months, source code was involved in nearly half of all data policy violations related to AI use. As developers rush to use AI to debug and build, proprietary logic is being exposed at an alarming rate.
Cloud platforms remain a malware delivery channel: Attackers continue to abuse trusted cloud services to distribute malicious content, aiming to evade detection, and increase the likelihood of user interaction. Microsoft OneDrive and GitHub were most frequently targeted, with 12% and 9.5% of organizations detecting malicious content on those platforms respectively.
Personal applications continue to pose data-exposure challenges: Personal cloud and AI applications remain widely used in workplace environments. LinkedIn, ChatGPT, and Google Drive are the most commonly used personal applications, and regulated data, source code, and intellectual property are the types of sensitive data most often at risk of leaking through them. These trends highlight the importance of data loss prevention (DLP) controls, user awareness, and strong governance practices.
