Internal threats continue to be one of the biggest challenges for cybersecurity leaders. Adding to this scenario is the expansion of autonomous artificial intelligence, which could significantly increase the risk of exposing sensitive data. According to Proofpoint, AI-based copilots could surpass employees themselves as sources of information leaks throughout this year.
More and more organizations are incorporating intelligent agents capable of interacting with multiple systems, automating complex tasks, or generating code. However, if these systems are not properly configured, they can trigger processes that expose confidential data or weaken security controls. Furthermore, in certain contexts, the behavior of these agents could be manipulated to perform unauthorized actions.
Experts point out that traditional internal threat prevention programs were designed with risks related to people in mind: their access, opportunities, or potential motivations. However, the integration of artificial intelligence introduces a new dimension of risk. Proofpoint researchers emphasize that AI agents should be considered digital identities with their own privileges, so organizations will need to manage their permissions, monitor their activities, and assess their impact on security.
In this new working environment, where humans and AI agents routinely collaborate, the risks arising from inadvertent errors also increase. Tools based on large language models such as ChatGPT, Microsoft Copilot, or Google Gemini can facilitate the accidental exposure of sensitive information when users input data into their queries. Likewise, the agents themselves could summarize internal documents or access restricted information if clear boundaries are not established.
The situation could worsen if malicious actors use instructions designed to manipulate AI systems. Through such interactions, they could cause agents to reveal internal processes or execute actions that previously required advanced technical knowledge.
Additionally, incidents related to internal threats tend to rise during periods of corporate change, such as mergers, acquisitions, or aggressive talent acquisition processes. In these contexts, transitional system access and pressure on employees create an environment more prone to information leaks or improper practices. According to analysts, AI could also facilitate activities like corporate espionage by enabling the investigation of competitors, the replication of legitimate communications, or hiding certain actions.
Despite these risks, AI also emerges as a key tool to improve security. Proofpoint anticipates that throughout 2026, artificial intelligence will play an increasingly important role in detecting and analyzing internal incidents. Thanks to its capability to process large volumes of data, it will be able to identify suspicious patterns, correlate events, and prioritize threats more quickly.
This shift will also lead to a transformation in risk management. Organizations will need to adopt a unified approach that integrates signals from identities, user behaviors, and technical events, rather than analyzing them separately. With a consolidated view, security teams will be able to intervene earlier and implement more precise measures.
Finally, experts emphasize the importance of establishing clear rules for the responsible use of artificial intelligence, including privacy policies, ethical criteria, and governance mechanisms that regulate the functioning of agents and their access to corporate information. According to Proofpoint, adopting these measures will be key to reducing new threats and ensuring a secure digital environment where humans and AI systems coexist.