A comprehensive new report reveals that manufacturing organizations are grappling with a dual challenge: rapidly adopting generative AI technologies while simultaneously defending against attackers who exploit these same platforms and trusted cloud services to launch sophisticated attacks.
The findings underscore an urgent need for enhanced security controls as the sector balances innovation with data protection.
Generative AI has become deeply noted across the manufacturing sector, with 94% of organizations currently using genAI applications directly.
Currently, 94% of organizations use genAI applications directly, 97% use apps that leverage user data for model training.
However, the landscape is shifting dramatically. Personal genAI account usage has plummeted from 83% in December 2024 to just 51% by September 2025, while organization-approved solutions have surged from 15% to 42% over the same period.
This transition reflects growing awareness of security risks associated with unmanaged AI tools. ChatGPT dominates the sector with 87% adoption, followed by Google Gemini at 74% and Microsoft 365 Copilot at 58%.
Notably, newcomer Grok has rapidly climbed from near-zero usage in March to 32% by September, demonstrating the sector’s willingness to experiment with emerging platforms.
Organizations are also moving beyond browser-based tools toward enterprise genAI platforms that offer greater control and privacy.
Currently, 37% of manufacturing companies use OpenAI services via Azure, while 31% leverage Amazon Bedrock and 8% use Google Vertex AI.
Additionally, 67% of organizations connect to OpenAI’s API endpoints for internal tools and AI agents, highlighting the shift toward programmatic integration of AI capabilities into core business systems.
Malware Distribution Channels
Threat actors are increasingly weaponizing trusted cloud services to deliver malware, exploiting user confidence in familiar platforms.
Microsoft OneDrive has emerged as the most commonly abused service, with 18% of manufacturing organizations reporting malware downloads each month.
GitHub accounts for 14% of incidents, leveraging its popularity among developers, while Google Drive accounts for 11%.
Approximately 22 out of every 10,000 users in the manufacturing sector encounter malicious content monthly through these platforms.
While cloud providers actively remove harmful files, the brief window before detection often proves sufficient for attacks to succeed. Infected files can spread rapidly within organizations as employees share documents through these widely used services.
The widespread use of personal cloud applications in workplace environments continues to blur boundaries between corporate and personal data management.
Google Drive appears in 98% of monitored manufacturing environments, LinkedIn in 95%, and OneDrive in 94%. While much activity remains legitimate, these platforms create significant data exposure risks when employees use them for unofficial sharing or when departing the organization.
Data policy violation analyses reveal alarming trends. Regulated data, including personal, financial, and healthcare information, accounts for 41% of violations in individual applications.
Intellectual property represents 32% of incidents, while passwords and API keys constitute 19%. Source code violations stand at 8%, notably lower than the global average of 50%.
These patterns highlight the risks inherent in using AI tools to summarize technical documents, generate reports, and optimize development workflows.
Organizations Strengthen Governance Controls
Manufacturing companies are responding with increasingly sophisticated security measures. DeepSeek ranks as the most frequently blocked genAI application, with 48% of organizations restricting access due to transparency concerns.
In genAI applications specifically, regulated data accounts for 29% of exposures, followed closely by source code at 28% and passwords or API keys at 26%.
ZeroGPT follows at 43%, primarily because of data handling practices that include storing submitted content and redirecting information to third-party sites.
Organizations are deploying various tools to prevent data leaks through personal applications. Google Drive faces restrictions in 35% of companies, personal ChatGPT in 29%, and Google Gemini in 23%.
These controls range from blocking all uploads to providing real-time user guidance and implementing data loss prevention solutions.
Security experts strongly recommend that manufacturing organizations inspect all HTTP and HTTPS downloads, block apps that pose disproportionate risks, implement comprehensive DLP policies to detect sensitive information being sent to unauthorized locations, and use Remote Browser Isolation technology when visiting higher-risk websites.
As the manufacturing sector continues integrating AI into operations, maintaining robust security frameworks while enabling innovation remains the critical challenge facing industry leaders.
Follow us on Google News, LinkedIn, and X to Get Instant Updates and Set GBH as a Preferred Source in Google.
