AI Is Now the Top Data Leak Channel
In October 2025, LayerX Security published a report. It alarmed CISOs worldwide. The key finding: 77% of employees paste sensitive files into GenAI tools. Of that, 82% comes from personal, unmanaged accounts.
The top-line number: GenAI now drives 32% of all corporate data leaks. It is the largest single channel for unauthorized data movement in the enterprise today.
This is not a future risk. It is happening in your organization right now.
The Numbers Behind the Problem
| Finding | Figure | Source |
|---|---|---|
| Employees pasting into AI | 77% | LayerX 2025 |
| Data leaks via AI tools | 32% | LayerX 2025 |
| ChatGPT use via personal accounts | 67% | LayerX 2025 |
| Daily pastes per employee | 14 | LayerX 2025 |
| Pastes with sensitive content per day | 3+ | LayerX 2025 |
Employees make 14 pastes per day from personal accounts. At least three contain sensitive records. Old DLP tools are built around files. They miss paste-based activity entirely.
Why Banning AI Fails
Samsung banned ChatGPT after employees leaked source code. The ban did not hold.
AI tools make people faster. Research shows developers using AI finish tasks 55% sooner. When you block AI, employees do one of three things:
- Use it anyway via personal accounts — 67% already do
- Lose output and resent the restriction
- Move to employers who allow AI
A ban shifts the risk. It does not end it.
The 900,000-User Extension Breach
In December 2025, OX Security found two bad Chrome add-ons. Together they had 900,000+ users. Both stole ChatGPT and DeepSeek chats.
One add-on carried Google's "Featured" badge — a sign users trust.
Both worked the same way:
- Captured chat content in real time
- Stored it on the victim's machine
- Sent batches to remote servers every 30 minutes
A separate probe found free VPN add-ons with over 8 million downloads. They had been capturing AI chats since July 2025.
For more on browser-level threats, see our Chrome Extension security guide.
Stop Leaks Before the Prompt Sends
The only solid defense: mask PII before it reaches the AI. Acting after the fact is too late.
This is what anonym.legal's Chrome Extension and MCP Server do.
Chrome Extension
- Blocks text before you submit to ChatGPT, Claude, or Gemini
- Finds and swaps PII: "John Smith" →
[PERSON_1] - Restores names in the AI's reply
MCP Server (for developers)
- Works with Claude Desktop, Cursor, and VS Code
- Acts as a clear proxy — your workflow stays the same
- PII is masked before prompts leave your machine
What Gets Protected
Both tools find 285+ entity types across 48 languages:
- Personal — names, emails, phone numbers, birth dates
- Financial — credit card numbers, bank accounts, IBANs
- Government — SSNs, passport numbers, driver's licenses
- Healthcare — medical record numbers, patient IDs
- Corporate — employee IDs, internal account numbers
If a breach hits — like those 900,000 users — there is nothing to recover. Only masked tokens stay in the chat log.
The Cost of No Action
Think about what employees paste into AI tools each day:
- Financial reports sent for review
- Customer records used in support chats
- Source code shared for debug help
- Legal files sent for summary
- Health records run for insights
IBM's 2024 Cost of a Data Breach Report sets the average breach cost at $4.88 million. IBM's 2025 update puts healthcare breaches at $7.42 million — still the highest of any industry.
The Chrome Extension is free. The MCP Server is part of Pro plans from €15/month.
Get Started Today
AI is here to stay. Your staff is already using it. The LayerX report shows standard tools are blind to AI-based leaks. You need controls built for this channel.
- Install Chrome Extension (free)
- Set up MCP Server (Pro plan)
- Compare Nightfall vs. anonym.legal
anonym.legal masks PII before it reaches any AI model. Browser work stays local. No chat content touches anonym.legal servers during the process.