One Article Review
| Source |  knowbe4 |
|---|---|
| Identifiant | 8318404 |
| Date de publication | 2023-03-14 13:00:00 (vue: 2023-03-14 13:07:09) |
| Titre | CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears |
| Texte |
CyberheistNews Vol 13 #11 | March 14th, 2023
[Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears
Robert Lemos at DARKReading just reported on a worrying trend. The title said it all, and the news is that more than 4% of employees have put sensitive corporate data into the large language model, raising concerns that its popularity may result in massive leaks of proprietary information. Yikes.
I'm giving you a short extract of the story and the link to the whole article is below.
"Employees are submitting sensitive business data and privacy-protected information to large language models (LLMs) such as ChatGPT, raising concerns that artificial intelligence (AI) services could be incorporating the data into their models, and that information could be retrieved at a later date if proper data security isn't in place for the service.
"In a recent report, data security service Cyberhaven detected and blocked requests to input data into ChatGPT from 4.2% of the 1.6 million workers at its client companies because of the risk of leaking confidential info, client data, source code, or regulated information to the LLM.
"In one case, an executive cut and pasted the firm's 2023 strategy document into ChatGPT and asked it to create a PowerPoint deck. In another case, a doctor input his patient's name and their medical condition and asked ChatGPT to craft a letter to the patient's insurance company.
"And as more employees use ChatGPT and other AI-based services as productivity tools, the risk will grow, says Howard Ting, CEO of Cyberhaven.
"'There was this big migration of data from on-prem to cloud, and the next big shift is going to be the migration of data into these generative apps," he says. "And how that plays out [remains to be seen] - I think, we're in pregame; we're not even in the first inning.'"
Your employees need to be stepped through new-school security awareness training so that they understand the risks of doing things like this.
Blog post with links:https://blog.knowbe4.com/employees-are-feeding-sensitive-biz-data-to-chatgpt-raising-security-fears
[New PhishER Feature] Immediately Add User-Reported Email Threats to Your M365 Blockl |
| Envoyé | Oui |
| Condensat | #11 #11 000 1000 135 14th 1560 1813 1878 2010 2019 2020 2021 2022 2023 2024 2:00 2:https://www 344 365 560 778 :https://blog :https://www able about above abusing access accomplished according account accounting accounts accounts:https://www actions actors add adding address addressed administrator advantage advice advisor after again against alert alive all alleged allowed along alps also always among another anri64 anti any anything application applications applied apps are around article artificial ask asked asks asset assist associated aston attached attachment attachments attack attacker attackers attacks attacks: attentively attractive authentic auto automate avoid aw0 awareness away awesome back bank bankruptcy bar based bavarian because becomes becoming been before being below bernard best between beyond bicycle biden bidens big biggest billion biz blackmamba: bleepingcomputer blocked blocklist blog bloghttps://blog blondie boar bonanza bonanza:https://blog book boot brand branded brands breach brief brigade brigade:https://www brings brown browser budget budget:https://www bus business but butchering button bypassing cable call campaign can can: canyon capabilities capitol card career careful cars case categories: cautious ceo ceoknowbe4 certain channels chatbot chatgpt chn chrome cisa city city:https://www claude clean click clicked clicking client cloud code com com/2023/03/09/fake com/3d com/article/3690610/cisa com/articles/ukraines com/blog/blackmamba com/cyberheistnews com/decipher/europol com/employees com/google com/heads com/information com/is com/most com/native/ransomware/fools com/news/security/new com/phisher com/phishing com/politics/congress/data com/sites/emilsayegh/2023/03/07/turla com/the com/watch com/whitbread come comes communication communications companies company comparing comparison complete completing comprehensive compromise compromised computer concerns conclude condition confidential confirm consecutive considering console contact containing contains content continues conversation corporate corresponds could count crack craft create created creating credentials credit csoonline culture customers cut cyber cyberattacks cybercriminals cyberhaven cyberheist cyberheistnews cybersecurity cybersecurityworks cyware dangerous darkreading data databases date date/time: day:https://www deadly dealing deck defend defense delivered demand demo demonstrating designed despite detect detected detection detection/ detection:https://www difficult digital directly discovered display dissecting distribute doctor document documented; dog doing domain don donne doorbell doppelpaymer download dqjgoz4 dramatically dream drive driven drives drone e0643979 each earlier easily easy ecosystems edging edition effective elephant email emails employees enable enabled enables end engage engagement engineer engineering engines enroll ensure enter entering entries epictetus europol evade evangelist even ever every everything example exceptional executive exfiltration exist explain explains exploit exploited exploits extension extension/ externally extract extreme facebook fake falling far fastest fave fbi fears feature featuring feeding felt file files filters financial find finished firewall firm first flaw/ flaw:https://arstechnica flixxy flying focus follow following fool forbes forget form formula forward forwarding found fqvw free french from fun funding future gamifying generally generate generated generative germany:https://www get get: girl give giving goes going gold gold: good google grand grid grimes group group: group:https://duo grow growing grown growth guide hackers hacking had hand happens hardly harvest has have heads hello help helped helpful helpnetsecurity helps here hey highlights hill hints his history hits hope hospitality hosted hours house hover how howard htm html https://info https://www huge human hundred hyas identified immediately immobilmedia immortal impacting impersonate impersonated improve inaugural inbox inc incident include including incorporating increase increasingly info |
| Tags | Ransomware Data Breach Spam Malware Threat Guideline Medical |
| Stories | ChatGPT ChatGPT |
| Notes | ★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.