LONDON, U.K., September 24, 2025 — Twenty-nine percent of cybersecurity leaders said their organizations experienced an attack on enterprise GenAI application infrastructure in the last 12 months, according to a survey by Gartner, Inc., a business and technology insights company.
The survey was conducted from March-May 2025 among 302 cybersecurity leaders in North America, EMEA and Asia/Pacific.
The survey found that 62% of organizations experienced a deepfake attack involving social engineering or exploiting automated processes, while 32% said they experienced an attack on AI applications that leveraged the application prompt in the last 12 months (see Figure 1). Chatbot assistants are vulnerable to a variety of adversarial prompting techniques, such as attackers generating prompts to manipulate large language models (LLMs) or multimodal models into generating biased or malicious output.
Figure 1: Impact of GenAI on the Attack Landscape (Percentage of Respondents)
Source: Gartner (September 2025)
Expert Take:
“As adoption accelerates, attacks leveraging GenAI for phishing, deepfakes and social engineering have become mainstream, while other threats — such as attacks on GenAI application infrastructure and prompt-based manipulations — are emerging and gaining traction,” said Prashast Gupta, Director Analyst at Gartner.
While 67% of cybersecurity leaders said emerging GenAI risks demand significant changes to existing cybersecurity approaches, Gartner said a more balanced strategy is warranted. “Rather than making sweeping changes or isolated investments, organizations should strengthen core controls and implement targeted measures for each new risk category,” said Gupta.
Gartner clients can read more in Data View: What Is the Impact of GenAI on the Attack Landscape? Learn how to maximize AI’s value while managing critical risks with the complimentary ebook AI in Cybersecurity: Minimize Risks and Maximize Impact.
About Gartner IT Symposium/Xpo
Additional leadership trends will be presented during Gartner IT Symposium/Xpo, the world’s most important conference for CIOs and other IT executives. Gartner analysts and attendees will explore how to become agents of change in their organizations and harness AI for successful digital transformation. Follow news and updates from the conferences on X and LinkedIn using #GartnerSYM, and on the Gartner Newsroom.
Upcoming dates and locations for Gartner IT Symposium/Xpo include:
October 20-23, 2025 | Orlando, FL
October 28-30, 2025 | Yokohama, Japan
November 10-13, 2025 | Barcelona, Spain
November 17-19, 2025 | Kochi, India
About Gartner for Cybersecurity Leaders
Gartner for Cybersecurity Leaders equips security leaders with the tools & insights to help reframe roles, align security strategy to business objectives and build programs to balance protection with the needs of the organization. Additional information is available at https://www.gartner.com/en/cybersecurity/products/gartner-for-cisos.
Follow news and updates from Gartner for Cybersecurity Leaders on X and LinkedIn using #GartnerSEC. Visit the Gartner Newsroom for more information and insights.
About Gartner
Gartner, Inc. (NYSE: IT) delivers actionable, objective business and technology insights that drive smarter decisions and stronger performance on an organization’s mission-critical priorities. To learn more, visit gartner.com.
Techedge AI is a niche publication dedicated to keeping its audience at the forefront of the rapidly evolving AI technology landscape. With a sharp focus on emerging trends, groundbreaking innovations, and expert insights, we cover everything from C-suite interviews and industry news to in-depth articles, podcasts, press releases, and guest posts. Join us as we explore the AI technologies shaping tomorrow’s world.
