Most Enterprise AI Tools Fail Security Standards, Says Codernic Audit
A technical audit by Swiss firm Codernic found that the majority of enterprise AI solutions on the market are little more than wrappers around third-party cloud APIs, raising serious compliance and security concerns. One key risk is silent data leakage, where sensitive personal or medical information is transmitted to external servers in plain text, potentially violating GDPR and Swiss data protection law. Another identified flaw is RAG hallucination, where AI systems fabricate answers by extrapolating from irrelevant documents, leading to unreliable outputs for business decisions. A third vulnerability involves AI tools bypassing role-based access controls, allowing users to retrieve documents they are not authorized to view. Codernic says it has rebuilt enterprise AI infrastructure from scratch to address these issues through deterministic data scrubbing, corrective retrieval mechanisms, and access-control-aware document indexing.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.
Discussion (0)
Log in to join the discussion and vote.
Log in