trends – CIO.works

Vulnerabilities Have Become Cyber Attackers’ No. 1 Door to the Enterprise

According to Verizon’s 2026 Data Breach Investigations Report analyzing 31,000 incidents, exploitation of software vulnerabilities has overtaken stolen credentials as the leading cause of enterprise breaches, accounting for 31% of cases versus 13% for credential abuse. Challenges in patch management persist, with only 26% of critical vulnerabilities fully remediated in 2025 and median patch times increasing, while the growing use of AI by attackers is accelerating exploit timelines, underscoring the urgent need for continuous, risk-based vulnerability management and defense-in-depth strategies.

https://www.csoonline.com/article/4176086/vulnerabilities-have-become-cyber-attackers-no-1-door-to-the-enterprise.html

Reflections on Science History: a Professor’s Take on AI

By CIO / Blog / technology, AI, trends

Associate Professor of History David Hecht reflects on the parallels between the atomic age and the rise of artificial intelligence (AI), emphasizing that technological advancements are shaped by social, political, and cultural factors rather than occurring inevitably. Hecht highlights the importance of understanding the societal context that fosters technology, warns against relying solely on fear to shape AI policy, and calls for articulating positive visions for regulating AI to ensure beneficial outcomes.

https://bowdoinorient.com/2026/05/16/reflections-on-science-history-a-professors-take-on-ai/

AI Infrastructure Budgets Set to Triple as Demand Soars: Deloitte

By CIO / Blog / AI, trends, budget

A Deloitte report reveals that AI infrastructure budgets are set to triple by 2028 as enterprises respond to soaring demand and increasing automation. Most companies are adopting hybrid infrastructure models that combine public cloud services with on-premises resources to effectively scale AI workloads, leading to significant shifts in IT spending and closer collaboration between business and technology decision-makers.

https://www.ciodive.com/news/ai-infrastructure-budgets-set-to-triple/817259/

Shadow AI Usage Statistics 2026: Latest Insights

By CIO / Blog / trends, AI, cybersecurity

Shadow AI—employees using unapproved AI tools at work—has become a widespread business risk, with over 80% of workers globally engaging in such use to boost productivity despite limited corporate governance. This unregulated adoption exposes organizations to significant security, compliance, and financial risks, including costly data breaches averaging $4.2 million, while many companies lack adequate policies or visibility to manage these challenges effectively.

https://sqmagazine.co.uk/shadow-ai-usage-statistics/

Here’s a Thing – What if Shadow AI Is Actually Telling Us Something Useful?

By CIO / Blog / strategy, AI, trends, critique, technology

Dana Louise Simberkoff of AvePoint suggests that shadow AI, like shadow IT before it, signals a cultural stress test within enterprises rather than simply being a technological failure, reflecting a gap between business needs and governance. She advocates for a shift in organizational mindset where employees are treated as stewards of AI, emphasizing trust, clear controls, and distributed judgment to manage AI safely and effectively, rather than imposing restrictive bans that drive usage underground.

https://diginomica.com/heres-thing-what-if-shadow-ai-actually-telling-us-something-useful

The Top 100 Gen AI Consumer Apps — 6th Edition

By CIO / Blog / report, app, trends, AI

A16z highlights key focus areas like AI, crypto, and consumer products. Recent content includes updates on generative AI consumer apps and a report on market shifts in AI tools, emphasizing the rise of ChatGPT as the leading consumer AI while others like Gemini and Claude are gaining traction. Global usage of AI products is becoming fragmented, with notable performance in specific regions. Creative tools are evolving, moving beyond image generation. The emergence of agentic AI and evolving integrations into existing platforms signifies a transition towards more powerful AI applications. Finally, traditional browser and desktop applications are being enhanced with AI capabilities, impacting user engagement metrics.

https://a16z.com/100-gen-ai-apps-6/

Half of US CISOs Work the Equivalent of a Six-Day Week

By CIO / Blog / cybersecurity, trends, CISO

US CISOs face rising pressure, working six or seven days weekly; 45% put in 11+ extra hours, 20% over 16 hours. Emotional exhaustion affects 44%, 56% of C-level feel the same. Despite stress, 94% would choose a cybersecurity career. AI exacerbates workload but shifts focus to business skills; 85% feel pressure to improve communication and interpersonal skills. Organizations must adapt to avoid governance gaps as AI changes operational dynamics.

https://www.infosecurity-magazine.com/news/half-us-cisos-work-equivalent/

CISOs in a Pinch: a Security Analysis of OpenClaw

By CIO / Blog / AI, cybersecurity, trends

Anthropic’s Claude Code Security is a significant advancement in pre-deployment vulnerability detection, using AI to identify logic-level vulnerabilities. However, the market overreacted to the announcement, conflating code scanning with comprehensive cybersecurity. The fastest-growing attack surface is AI agents themselves, requiring a platform approach that addresses supply chain security, runtime monitoring, governance, and unified visibility.

https://www.trendmicro.com/en_us/research/26/c/cisos-in-a-pinch-security-analysis-of-openclaw.html

Measuring AI Agent Autonomy in Practice Anthropic

By CIO / Blog / AI, coding, AI agent, trends, research

TLDR: This research examines AI agent autonomy, focusing on Claude Code's interactions and user behavior. It finds that Claude is increasingly autonomous, working longer without interruptions and auto-approving more frequently as users gain experience. However, experienced users also interrupt more, indicating active oversight. Most agent tasks are low-risk, mainly in software engineering, with limited high-risk applications. Recommendations include enhancing post-deployment monitoring, training AI to recognize uncertainty, and designing for effective user oversight. Overall, autonomy levels are rising amid evolving agent applications.

https://www.anthropic.com/research/measuring-agent-autonomy

The CISO Diaries February 2026 Report: The Security Priorities That Actually Move The Needle

By CIO / Blog / trends

CISO Diaries February 2026 report emphasizes evolving security priorities: trust shifts from perimeters to identity, supply chain risks now central, AI enhances integrity checks, response speed is crucial, and fundamental controls yield high returns. Security culture and incentives matter, while security teams increasingly oversee automation. Future focus: reducing reliance on perimeter defenses and manual operations.

https://cisowhisperer.com/the-ciso-diaries-february-2026-report-the-security-priorities-that-actually-move-the-needle/