{"id":194925,"date":"2026-03-11T15:50:00","date_gmt":"2026-03-11T19:50:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/11\/kelly-fuller-gordon-on-the-human-visibility-gap-in-cy\/"},"modified":"2026-03-11T16:15:38","modified_gmt":"2026-03-11T20:15:38","slug":"kelly-fuller-gordon-on-the-human-visibility-gap-in-cy","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/11\/kelly-fuller-gordon-on-the-human-visibility-gap-in-cy\/","title":{"rendered":"Kelly Fuller Gordon on the Human Visibility Gap in Cy"},"content":{"rendered":"<p><a href=\"https:\/\/www.usatoday.com\/story\/special\/contributor-content\/2026\/03\/11\/ai-didnt-create-digital-risk-it-exposed-it-kelly-fuller-gordon-on-the-human-visibility-gap-in-cy\/89104738007\/\">Kelly Fuller Gordon on the Human Visibility Gap in Cy<\/a><\/p>\n<p><a href=\"https:\/\/www.usatoday.com\/story\/special\/contributor-content\/2026\/03\/11\/ai-didnt-create-digital-risk-it-exposed-it-kelly-fuller-gordon-on-the-human-visibility-gap-in-cy\/89104738007\/\">https:\/\/www.usatoday.com\/story\/special\/contributor-content\/2026\/03\/11\/ai-didnt-create-digital-risk-it-exposed-it-kelly-fuller-gordon-on-the-human-visibility-gap-in-cy\/89104738007\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-11 15:50:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.usatoday.com\">www.usatoday.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points. March 11, 2026, 3:16 p.m. ETExecutives have spent decades fortifying their digital estates, deploying firewalls, endpoint detection, network monitoring, and layered incident response. Modern cybersecurity, Kelly Fuller Gordon, founder of Risx, explains, has matured around protecting infrastructure. Yet, she argues that the rapid adoption of artificial intelligence has revealed a different flaw in the system: exposure at the human layer.\u201cCybersecurity has been built and matured around protecting systems,\u201d says Gordon. \u201cWe protect infrastructure, devices, and nodes. What AI has exposed is this vulnerability around human visibility. We live digitally, but we don\u2019t yet have strong approaches to protect ourselves at that level.\u201dIn Gordon\u2019s view, AI hasn\u2019t created digital risk, but has accelerated surveillance. Her argument lies in the belief that large language models rely on vast amounts of data for training, including text from the internet, publicly available datasets, or proprietary sources, potentially leading to identifying patterns and replicating tone, voice, and behavioral cues with precision.\u00a0According to PwC, a recent study highlighted that human error and exposure were a significant contributing factor in 74% of all cybersecurity breaches. \u201cIt\u2019s not getting better, and we can\u2019t address it through more awareness training alone,\u201d Gordon says. \u201cAI correlates information incredibly well. It sees patterns about us and can fabricate something just believable enough that our trust signal says yes.\u201dA deepfake, she insists, does not need to be flawless. It only needs to feel familiar. With further voice cloning, spoofed internal emails, QR-code phishing sent via calendar invites, she observes that attack methods are evolving in sophistication. In regulated industries such as banking, where identity verification is foundational, she believes the implications are immediate. \u201cAI can mimic our voice extremely well,\u201d she says. \u201cIf you combine that with publicly available data and behavioral patterns, it becomes easier to fabricate something that feels authentic.\u201d\u00a0According to Gordon, the issue lies in structural lag. She insists that cybersecurity was designed to protect systems. It was never architected to govern human digital exposure. She refers to this as an \u201cupstream risk.\u201d\u00a0\u00a0Offering a house analogy, she explains, \u201cCybersecurity is the locks and cameras on your house that protect you when someone arrives at the door. The upstream of that is all the visibility about you online, your address, your routines, your family connections. That\u2019s how an attacker can choose your house to attack in the first place.\u201d AI, in her view, has simply made that upstream visibility easier to access, as it could consolidate all the online information in a single output.\u00a0Gordon points to the reality that home addresses are searchable, family members are tagged, and professional networks are mapped. The social graph, she notes, can reveal who emails whom and who is connected to whom. She says, \u201cYour identity goes beyond passwords. It\u2019s your digital likeness, your voice, your face, the way you write, and the web of relationships around you. AI can correlate that and use it to impersonate you convincingly.\u201dShe adds that high-net-worth individuals often face an expanded attack possibility, with multiple properties, assistants with privileged access, and family members posting publicly. Organizations, she argues, face similar complexity. As IT teams focus on system controls while business operators focus on growth and efficiency, Gordon notes that they may both adopt AI to streamline those processes, and in doing so, potentially invite exposure risk.\u00a0\u201cAs AI shifts how we function, it should shift how we think about protection,\u201d Gordon says. \u201cSecurity tools are still largely system-focused. There\u2019s an expanded mental shift required.\u201d That shift, she emphasizes, begins with visibility.\u201cWe start by asking: where are you exposed?\u201d Gordon says. \u201cWe conduct what you could call reconnaissance on our clients, looking at their digital footprint the way an adversary would, not to cause alarm, but to gain perspective. Most people have never seen the full digital picture of themselves.\u201dShe refers to this process as a visibility audit, which examines publicly accessible data, data broker listings, executive exposure, and social connections. The objective, she highlights, is intentionality. \u201cSome exposure may be acceptable, some may require reduction, and some may simply require acknowledgment and monitoring,\u201d Gordon explains.\u00a0She is explicit that her position is not anti-AI. \u201cWe love AI. It\u2019s powerful, and it\u2019s not going anywhere,\u201d she says. \u201cI\u2019m not saying it makes risk greater. It gives us a different lens. It makes it easier to gather and correlate data. The risk was always there.\u201d What changes now, she argues, is governance.Gordon distinguishes between cybersecurity tools that protect devices and networks and what she calls digital governance, protecting identity and visibility. In her framing, governance is a discipline. For organizations, she advises bridging conversations between IT and business operations. For individuals, she encourages recognizing that digital presence is an asset with risk implications and practicing vigilance.\u00a0\u201cVisibility should be intentional, not accidental,\u201d Gordon says. \u201cDigital risk can be governed. The first step is understanding what\u2019s out there and deciding deliberately what you want to keep there.\u201d Through that lens, Gordon posits that AI has illuminated the IT terrain; the opportunity now is to govern it, with clarity and strategy rather than fear.\u00a0<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Kelly Fuller Gordon on the Human Visibility Gap in Cy https:\/\/www.usatoday.com\/story\/special\/contributor-content\/2026\/03\/11\/ai-didnt-create-digital-risk-it-exposed-it-kelly-fuller-gordon-on-the-human-visibility-gap-in-cy\/89104738007\/ Publish Date: 2026-03-11 15:50:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":194926,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.usatoday.com\/gcdn\/authoring\/authoring-images\/2026\/03\/11\/USAT\/89104756007-image-2-3.png?crop=1599,901,x0,y349&width=1599&height=901&format=pjpg&auto=webp","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24,25,27],"class_list":["post-194925","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity","tag-phishing","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/194925"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=194925"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/194925\/revisions"}],"predecessor-version":[{"id":194927,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/194925\/revisions\/194927"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/194926"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=194925"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=194925"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=194925"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}