
Better Than Google, Still Risky: The OpenEvidence Story
From Cyberside Chats: Cybersecurity Insights from the Experts by Chatcyberside
May 19, 2026 · 15 min · Episode 73
About this episode
Sherri and Matt discuss the implications of unauthorized AI tool usage in healthcare and other sectors, highlighting the risks and necessary precautions for security leaders.
65% of US doctors are using an AI tool their hospital never approved — on personal phones, under click-through contracts. Sherri and Matt unpack what every CISO and IT leader should learn from it about shadow AI, "free" professional tools, and the contracts nobody's reading. The tool is OpenEvidence — 27 million clinical queries in April 2026 alone, 60% of them shaping actual treatment decisions. Doctors love it because the alternative was Googling patient symptoms on a personal browser. Their hospitals mostly don't know it's happening, and the vendor's click-through Business Associate Agreement authorizes them to use that data to train their models forever. Healthcare is the example. The same pattern is showing up in legal, financial services, engineering, and HR right now — different tool, same structural risk. Tune in for five concrete takeaways security and IT leaders can use this week. Key Takeaways: Inventory shadow AI. Ask your staff what AI tools they use to do their jobs, not whether they're using unauthorized tools. The real number is likely 2–5x what you'll find. Read the actual contract before letting any AI tool touch sensitive data. Find the training-data clause…
People in this episode
Hosts: Sherri, Matt
Topics covered
- shadow AI
- healthcare technology
- data privacy
- AI tools
- cybersecurity
- contract management
Keywords
- AI tools
- OpenEvidence
- shadow AI
- data privacy
- healthcare
- cybersecurity
- contracts
Mentioned in this episode
Organizations: OpenEvidence, Healthcare, legal, financial services, engineering, HR
Places: US
More episodes of Cyberside Chats: Cybersecurity Insights from the Experts
- Damaged Goods: When your new hire is already compromised · June 9, 2026 · 15 min
- The CRM Goldmine: Inside the Salesforce Breach Wave · June 2, 2026 · 17 min
- Shadow Agents: When Your AI Workforce Has No Boss · May 26, 2026 · 29 min
- Finals Week Fallout: The Canvas Hack That Shook Education · May 12, 2026 · 11 min
- 9 Seconds to Zero: Misbehaving AI · May 5, 2026 · 17 min
- Security Debt: The Risk Nobody is Reporting · April 28, 2026 · 29 min
Explore listener stats, chart rankings, contacts and more on the Cyberside Chats: Cybersecurity Insights from the Experts podcast page.