[[{“value”:”
ARTIFICIAL intelligence (AI) is fast becoming the new productivity engine across Malaysia’s corporate landscape.
From copilots that summarise reports to chatbots that draft emails, employees are discovering clever ways to work faster and smarter. But in the rush to embrace innovation, a new blind spot has emerged: shadow AI.
Shadow AI refers to the use of unapproved or unmanaged AI tools by employees, often without the knowledge or oversight of IT or security teams.
The Sophos Future of Cybersecurity in Asia Pacific and Japan 2025 report reveals that 91% of Malaysian organisations have already adopted some form of business AI tool; yet 36% also admit that staff are using unauthorised AI platforms.
That means a significant portion of the workforce is experimenting with powerful tech in the shadows, without proper governance or visibility.
This kind of unmanaged access creates real problems. Sensitive company data, customer records, or intellectual property can end up being fed into public AI models—often without the user fully understanding the risk.
The same Sophos report highlights that 41% of Malaysian organisations don’t even know which AI tools are in use, and 35% have discovered security vulnerabilities within the tools themselves. In some cases, these weaknesses could expose confidential data to external parties or bad actors looking for an easy in.
What’s important to understand is that most shadow AI usage isn’t malicious. It’s often driven by employees trying to be more efficient, for example analysts trying to speed up workflows, marketers testing content generation, execs chasing quick insights.
The problem arises when these tools operate outside of sanctioned environments. One unvetted app. One accidental upload. One misconfiguration. That’s all it takes.
And in highly regulated sectors like finance, telco, and government-linked companies, poor AI governance isn’t just a risk, it’s a compliance landmine.
Whether it’s the Personal Data Protection Act (PDPA) or industry-specific rules, data leaving the guardrails can lead to serious repercussions. Meanwhile, overworked cyber teams are left scrambling to cover more ground with fewer resources.
(Image: EY)
So, how can organisations regain control without slamming the brakes on innovation?
Visibility must come first
A sound AI governance model must be built on zero-trust principles and continuous monitoring. Organisations need to know who is using AI, what data it’s touching, and where that data is going.
To get there, traditional cybersecurity postures need to stretch. AI introduces a whole new attack surface, and security needs to cover every layer, from data and identity to endpoints and user behaviour.
AI policies must move beyond paper
Many organisations already have AI use policies, but policies alone don’t move the needle. Awareness programs are needed that go beyond technical checklists. Teams must be trained to identify when they’re interacting with external AI systems and why data governance is critical, not just bureaucratic.
Leadership needs to steer the shift
Outright bans rarely work—they only drive AI use further underground. Instead, CISOs and executive leaders need to point teams towards approved, secured, and monitored tools.
Shadow AI flourishes in environments where innovation is stifled or IT is seen as a blocker. Flip that script. Enable experimentation, but with clear rules of engagement.
We’re entering what some are calling the “Generative Age”, where AI becomes embedded in everyday work. But innovation and security can’t be seen as opposing forces. They are two sides of the same coin.
Shadow AI won’t disappear; people will always look for faster, more efficient ways to get things done. The real question is whether organisations face it head-on with governance and visibility or leave the door open to the next big breach from the inside out.
At the end of the day, AI isn’t the enemy…unmonitored AI is. Malaysian businesses that act now to build clear frameworks, gain visibility, and hold people accountable will not only reduce risk, but unlock AI’s true potential in a way that’s both secure and sustainable. ‒ Oct 31, 2025
Aaron Bugal is the field CISO, APJ at Sophos.
The views expressed are solely of the author and do not necessarily reflect those of Focus Malaysia.
Main image: Tech Wire Asia
The post Shadow AI: The hidden insider threat lurking in Malaysian companies first appeared on Focus Malaysia.
“}]]
Wählen Sie unsere Plattform, wenn Sie sich schnell anmelden, über 2.500
Slots spielen und Ihr Geld sofort und ohne versteckte Gebühren herausholen möchten. Die Website von Simsino
bietet eine große Auswahl an Casinospielen für jeden Spielertyp.
Die Website wird schnell in Ihrem Browser geladen, sodass Sie jederzeit und überall spielen können, ohne die Simsinos Casino App herunterladen zu müssen. Hier finden Anfänger eine einfache Registrierung und ein großzügiges Startbonuspaket, während erfahrene Nutzer ein Treueprogramm mit Privilegien, schnelle Auszahlungen und faire Regeln erwarten. Im Gegensatz zu 888casino bietet
Simsinos zudem deutlich mehr innovative Game-Shows und
eine größere Vielfalt im Bereich der Tischspiele.
Um bis zu 5000 € aus dem Bonusgeld auszahlen zu können, ist eine Einzahlung von 50 € erforderlich, andernfalls beträgt das Limit das
10-fache der Ersteinzahlung. Der Bonus verfällt nicht,
was einen Komfort bietet, den man anderswo selten findet.
Die zweite Einzahlung bringt einen weiteren 100 %-Bonus und
140 Freispiele zu denselben Bedingungen. Eine erste Einzahlung von 20
€ bis 250 € bringt einen 100 %-Bonus und 100 Freispiele für Spielautomaten.
References:
https://online-spielhallen.de/kingmaker-casino-erfahrungen-ein-detaillierter-leitfaden/
Easy logins from no KYC casinos are extremely convenient as well.
But where they really nail it is the live dealer section. That’s as strong
a hook as you could ask for, and with the very reasonable rollover, even casual players
should have no problem grinding out their wins.
Newbies can get up to A$5,000 in bonus cash and 50
spins on the Fortune Wheel, which can pay out a variety of bonuses — including up to
A$1,000,000.
Promotions are another strong suit of AU online casinos – you get to
pick between deposit matches, free spins, VIP rewards, cashback offers, birthday promotions, and more.
Whenever you open a real money Australian online casino, you’re
always hit with the welcome bonus in the face. There are no laws in place that prevent Australians from signing up at offshore casino sites and playing real money games.
This law affects companies within the country,
meaning that online casinos licensed in other jurisdictions outside of Australia can still
accept Australian players.
While they’re secure, they can be slower and may require higher minimum deposits.
It’s a great choice if you prefer not to share banking details online.
Simply purchase a voucher with cash at a retail store and use the
code to fund your casino account. Navigation is intuitive, gameplay is seamless, and the
excitement rivals that of playing on a desktop.
The result is a smooth, visually appealing, and fully immersive gaming experience.
As a loyal player, you can earn points.
References:
https://blackcoin.co/new-online-casinos-australia-2025-guide/
There are no laws in place that prevent Australians from signing
up at offshore casino sites and playing real money
games. This law affects companies within the country, meaning that online casinos licensed in other jurisdictions outside of Australia can still accept Australian players.
Online casino games can also be played for fun before wagering real money.
There are many offshore online real money casinos and betting sites you can use for a quality experience.
As a result, whether it’s legal for you to use
casinos online for real money hangs on your state.
One of the primary perks of online gaming is the attractive bonuses
and promotions that casinos offer.
With over 8,000 games to choose from (from 60 different game providers), it’s easily one of the
biggest collections of games we’ve seen from a real money online casino.
The best Australian online casino real money site welcomes new players with a versatile bonus that is perfect for all bankrolls.
For a safe and enjoyable experience, play only at the best real money online casino Australia offers, like the trusted
sites we’ve featured here. Yes, pretty much all online casinos
in Australia offer bonuses these days. PlaytechPlaytech is another global powerhouse that supplies a wide
variety of pokies, table games, and branded content to
Australian online casinos.
paypal online casino
References:
jobboat.co.uk
online casino paypal
References:
https://allgovtjobz.pk/companies/best-paypal-casinos-2025-best-casinos-accepting-paypal