Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

KnowBe4: Security Risks in AI Add-Ons and Extensions

KnowBe4
07/05/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


Nowadays, AI can book your travel, plan your weekly meals, and much more all on its own. It does the boring work for you. To do this, AI uses add-ons. Think of them like apps for your AI. You give them permission to talk to your bank or your email so they can get the work done. Cool, right? But researchers found that one in four of these AI add-ons have massive security holes. So my advice is only use add-ons from software vendors that you trust. And before you install an add-on, take a moment to review the permissions to limit access to any files or sites you want to remain secure. Follow Know Before to stay up to date with the current AI threats.

TL;DR

  • AI add-ons extend your AI assistant's capabilities by connecting it to services like email and banking, but they also introduce significant security risks.
  • Researchers found that one in four AI add-ons contain major security vulnerabilities, making careful vetting essential before installation.
  • Users should only install AI add-ons from trusted vendors and review permissions carefully to limit access to sensitive files and accounts.

Summary

This short-form security awareness clip from KnowBe4 highlights a growing but underappreciated risk: the AI add-ons and extensions that power automated tasks like travel booking, meal planning, and email management may be exposing users to serious security vulnerabilities. As AI assistants become more capable, they increasingly rely on third-party add-ons — essentially apps that connect your AI to sensitive services like your bank account or email inbox. While the convenience is real, researchers have found that one in four of these AI add-ons contain significant security flaws. KnowBe4 advises users to install add-ons only from trusted software vendors and to carefully review permission requests before granting access, limiting exposure to sensitive files and services. The clip closes with a call to follow KnowBe4 for ongoing updates on emerging AI threats, positioning the brand as a go-to resource for security awareness in the age of agentic AI.

Chapters

0:00 - What AI Add-Ons Do
0:17 - The Security Risk Statistic
0:22 - How to Stay Protected

Key Quotes

0:17 "Researchers found that one in four of these AI add-ons have massive security holes."
0:22 "My advice is only use add-ons from software vendors that you trust."
0:29 "Take a moment to review the permissions to limit access to any files or sites you want to remain secure."

FAQ

What are AI add-ons and why are they risky?

AI add-ons are extensions that give your AI assistant permission to interact with external services like your email, bank, or calendar. They are risky because researchers have found that one in four contain significant security vulnerabilities that could expose your private data.

How can I protect myself when using AI add-ons?

Only install add-ons from software vendors you trust, and before installation, review the permissions being requested. Limit access to any files or services you want to keep secure.

Categories:
  • » Webinar Library » KnowBe4
  • » Cybersecurity » Data Security
  • » Data Protection
Channels:
News:
Events:
Tags:
  • AI & Machine Learning
  • Security Operations
  • Data Privacy
  • Getting Started
  • short_form
  • AI security risks
  • AI add-ons and extensions
  • permission management
  • security awareness
  • agentic AI
  • data privacy
  • third-party integrations
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: KnowBe4: Security Risks in AI Add-Ons and Extensions

              Upcoming Webinar Calendar

              • 07/09/2026
                01:00 PM
                07/09/2026
                The HUMAN Experience: Empowering Agentic Trust in Practice
                https://www.truthinit.com/index.php/channel/2026/the-human-experience-empowering-agentic-trust-in-practice/
              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Level Security Team for Unmatched Defense Success
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-level-security-team-for-unmatched-defense-success/
              • 07/14/2026
                02:00 PM
                07/14/2026
                Understanding the Crucial Role of Context in AI Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-crucial-role-of-context-in-ai-data/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/21/2026
                01:00 PM
                07/21/2026
                HUMAN Dialogue: Insights from Attackers During the FIFA World Cup
                https://www.truthinit.com/index.php/channel/2029/human-dialogue-insights-from-attackers-during-the-fifa-world-cup/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Innovations in Data Privacy and Digital Protection
                https://www.truthinit.com/index.php/channel/2000/insights-and-innovations-in-data-privacy-and-digital-protection/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 07/29/2026
                12:00 PM
                07/29/2026
                Unified Data Security in Action: Uncover, Analyze, and Resolve Threats
                https://www.truthinit.com/index.php/channel/2045/unified-data-security-in-action-uncover-analyze-and-resolve-threats/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Becoming Agent Ready: Insights from Cyera's Expertise
                https://www.truthinit.com/index.php/channel/2036/becoming-agent-ready-insights-from-cyeras-expertise/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jul
                09

                The HUMAN Experience: Empowering Agentic Trust in Practice

                07/09/202601:00 PM ET
                • Jul
                  14

                  Crafting a Championship-Level Security Team for Unmatched Defense Success

                  07/14/202601:00 PM ET
                  • Jul
                    14

                    Understanding the Crucial Role of Context in AI Data

                    07/14/202602:00 PM ET
                    • Jul
                      21

                      Strategies for Managing AI Governance and Securing App-to-LLM API Traffic

                      07/21/202604:00 AM ET
                      • Jul
                        21

                        HUMAN Dialogue: Insights from Attackers During the FIFA World Cup

                        07/21/202601:00 PM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version