There are two conflicting mindsets when adopting AI — the “gas” camp of eager business and tech leaders, and the “brakes” camp of security, legal and compliance teams. To balance these six mindsets, businesses need to identify relevant risks, establish a customer-centric process, and adopt a security framework that categories risks across different AI system components. By harmonizing both camps, even regulated sectors like healthcare and financial services can find value from AI.

Ivanti VPN customers targeted via unrecognized RCE vulnerability (CVE-2025-22457)
A suspected Chinese advanced persistent threat (APT) group exploited CVE-2025-22457, a previously unexploitable buffer overflow bug, to compromise devices running Ivanti Connect Secure (ICS) and