Know the risks of using AI
State employees are being bombarded with opportunities to use new Artificial Intelligence (AI) tools to make their work more efficient. Employees must ensure that they are not inadvertently creating higher risks of cybersecurity incidents by using these AI tools.
The biggest risks are public and open sites with web chatbots (ChatGPT, Bing Chat, Google Bard). These sites collect your information which is then available to anyone, even fraudsters. Uploading items like policies, procedures and spreadsheets to these AI sites can be used to launch targeted phishing campaigns and security attacks against your department.
ACTION STEPS:
- State employees should PAUSE before using work devices to access any AI tool and VERIFY the use and data being uploaded with their supervisors and department IT staff.
- Ensure that no sensitive, personally Identifiable information (PII) or any security information is uploaded to any AI chat bot tool.
- REPORT any suspicious activity on work devices if you have used these types of AI tools.
See our CTR Cyber page for more cybersecurity internal controls and contact [email protected] with any incidents or suspected incidents of fraud or cyber threats or if you need support from our Statewide Risk Management Team.