TL;DR: A MIT-based analysis cited in the article says 95% of organizations are getting zero return from GenAI investment, while fewer than 1% have adopted microsegmentation and abandoned AI pilots can leave service accounts, tokens, APIs, and data artifacts persistently exposed. The governance problem is no longer pilot success, but whether AI systems can be contained, decommissioned, and identity-scoped before they become latent attack paths.
NHIMG editorial — based on content published by ColorTokens: 95% of AI Projects Are Unproductive and Not Breach Ready
By the numbers:
- 1% of organizations have adopted microsegmentation capabilities that, lities that can anticipate, withstand, and evolve from cyberattacks.
- The MIT report is based on analysis of over 300 AI deployments, interviews with 52 organizations, and surveys from 153 senior leaders.
Questions worth separating out
Q: What breaks when an AI pilot is left running without ownership?
A: When an AI pilot is left running without ownership, its service identities, API keys, and data connections often remain valid even though no one is accountable for them.
Q: Why do abandoned AI projects create so much security risk?
A: Abandoned AI projects create security risk because they usually leave behind more than software.
Q: How do security teams know whether AI containment is actually working?
A: Containment is working when AI workloads can only reach approved services, credentials expire or are rotated on schedule, and dormant projects have no active external dependencies.
Practitioner guidance
- Map every AI workload identity Track service accounts, API keys, tokens, and certificates tied to AI training, inference, and orchestration.
- Segmentation becomes mandatory for AI pilots Place AI workloads in isolated microsegments with explicit allowlisted flows to data stores, model services, and external APIs.
- Tie decommissioning to identity revocation Require a shutdown runbook that disables identities, revokes tokens, removes API keys, archives or deletes intermediate artefacts, and closes third-party integrations in one workflow rather than as separate tasks.
What's in the full article
ColorTokens's full article covers the operational detail this post intentionally leaves for the source:
- How abandoned AI pilots become breach-ready through residual service accounts, tokens, and API keys.
- Why flat east-west connectivity makes containment harder when AI workloads are compromised.
- How microsegmentation changes blast radius in AI environments with shared data and model dependencies.
- Which shutdown and containment steps the vendor recommends for paused or unproductive AI projects.
👉 Read ColorTokens's analysis of why unproductive AI projects become breach-ready →
AI projects and breach readiness: what security teams are missing?
Explore further
Abandoned AI governance debt is now a breach issue, not a productivity issue. The article is right to connect failed AI pilots to security exposure because the residual identities and data paths are what attackers inherit. Once a pilot stops delivering value, every remaining credential and permission becomes unjustified standing access. Practitioners should treat stalled AI as an identity lifecycle failure.
A question worth separating out:
Q: Who is accountable when an abandoned AI workload exposes data?
A: Accountability should sit with the business and technical owners of the workload, not only the security team. AI systems span IAM, NHI, data, and infrastructure controls, so the owner must be responsible for decommissioning, token revocation, data retention, and dependency removal. Without that assignment, abandoned systems become orphaned risk.
👉 Read our full editorial: AI projects create breach-ready identity and network risk