Understanding the surge in genAI platform adoption and its implications

Netskope, a pioneer in security, recently revealed a staggering 50% uptick in genAI platform usage among enterprise users over the three months leading up to May 2025. As companies lean towards safely adopting SaaS genAI apps and AI agents, the growing presence of shadow AI—employee-used, unsanctioned AI applications—exacerbates security vulnerabilities.

This information, featured in the latest Netskope Threat Labs Cloud and Threat Report, highlights a significant shift towards genAI platforms, whether executed via cloud solutions or on-premises. With increasing interest in creating AI applications, enterprises face new cybersecurity challenges.

GenAI platforms, foundational frameworks for building custom AI apps, are currently the fastest-growing shadow AI segment owing to their user-friendly nature. By May 2025, their user base grew by 50%, with network traffic increasing 73% within the same timeframe. This trend underscores the need for enhanced data loss prevention (DLP) and continuous oversight. Popular platforms include Microsoft Azure OpenAI, Amazon Bedrock, and Google Vertex AI.

“The rapid growth of shadow AI places the onus on organisations to identify who is creating new AI apps and AI agents using genAI platforms and where they are building and deploying them,” said Ray Canzanese, Director of Netskope Threat Labs. “Security teams don’t want to hamper employee end users’ innovation aspirations, but AI usage is only going to increase. To safeguard this innovation, organisations need to overhaul their AI app controls and evolve their DLP policies to incorporate real-time user coaching elements.”

Companies are exploring on-premises options for genAI, with many turning to Large Language Model (LLM) interfaces. Presently, 34% of organisations utilise these interfaces—Ollama leads the pack, and emerging players like LM Studio and Ramalama are gaining traction. Enterprise users are avidly tapping into AI resources, with platforms like Hugging Face witnessing substantial engagement across 67% of organisations. GitHub Copilot is now embedded in 39% of enterprises, illustrating the rising interest in AI agents and frameworks.

Netskope monitors more than 1,550 distinct genAI SaaS applications, a substantial increase from just 317 in February. This surge signals the speed at which new genAI apps are being embraced in the corporate domain, with data uploads to such apps climbing from 7.7 GB to 8.2 GB per month. Companies are gravitating towards purpose-built tools, integrating AI applications with productivity suites. Notably, while ChatGPT's enterprise popularity dipped, apps like Anthropic Claude and Grammarly have gained traction

Security leaders must champion responsible AI adoption by:

• Assessing genAI tools: Identifying active tools and users.
• Strengthening app controls: Implementing and enforcing approved app policies.
• Reviewing local controls: Apply suitable security frameworks for on-premises setups.
• Enforcing continuous monitoring: Stay ahead of shadow AI development and regulatory shifts.
• Evaluating shadow AI risks: Collaborate with advocates to refine policies curbing shadow AI.