A new report from Google-owned Wiz Inc. reveals artificial intelligence has moved from experimental tooling to default cloud infrastructure, with 81% of observed environments running managed AI services and 90% running self-hosted AI software.
The State of AI in the Cloud 2026 report analyzed anonymized data across hundreds of thousands of cloud environments throughout 2025. The headline finding: AI is no longer a discrete deployment decision. 63% of organizations self-host AI models, but 68% of those ingest models through third-party software, creating an inherited attack surface they didn't choose and may not have inventoried.
Concentration risk is elevated: 42% of organizations depend on a single AI model. Developer tooling shows saturation, with AI-integrated IDE extensions in at least 80% of organizations and 71% having an AI copilot deployed.
Wiz Research found in September 2025 that roughly one in five organizations using AI-powered vibe-coding platforms had applications affected by systemic security weaknesses. Issues at platforms like Base44 and Moltbook exposed insecure patterns becoming systemic when AI-generated defaults replicate at scale.
Orchestration infrastructure is expanding faster than security practice: at least 57% of organizations have deployed self-hosted AI agent technologies, and Model Context Protocol servers appear in at least 80% of cloud environments.
Wiz documents incidents like the Probllama vulnerability (CVE-2024-37032) allowing remote code execution against Ollama instances, and the singularity supply chain attack against the Nx build system abusing AI tools for reconnaissance.
The report concludes organizations must treat AI as first-class cloud infrastructure, subjecting AI systems to the same asset inventory, configuration review, and exposure management as any other workload. Governance must integrate across cloud security, application security, and data governance functions.