1. Forum
  2. Fidonet
  3. CONSPRCY

  • Watch out - your workers

    From Mike Powell@1:2320/105 to All on Thu Oct 9 08:56:33 2025
    Watch out - your workers might be pasting company secrets into ChatGPT

    Date:
    Wed, 08 Oct 2025 17:02:00 +0000

    Description:
    You can add ChatGPT to the list of Shadow IT apps that need monitoring.

    FULL STORY

    ChatGPT and other Generative Artificial Intelligence ( GenAI ) tools are transforming what risk of Shadow IT means, new research has found, as
    employees are becoming a little too open - and many have even provided the
    tool with Personally Identifiable Information (PII) or Payment Card Industry (PCI) numbers willingly.

    Shadow IT is the practice of using programs and apps in a business
    environment that werent approved or otherwise vetted by the IT security department. Employees often use apps theyre not allowed to because its easy
    and convenient - things like web-based image-to-pdf converters , WhatsApp, personal cloud storage solutions like Dropbox, and similar.

    But research from LayerX claims this is opening up companies to all sorts of cyber-risks, from introducing malware and ransomware to corporate infrastructure, to leaking sensitive data via unprotected cloud storage, or uploading classified documents to shady services.

    Pasting secrets

    The companys latest Enterprise AI and SaaS Data Security Report 2025 found almost half (45%) of enterprise employees are now using generative AI in one form or another.

    Of those, more than three-quarters (77%) have been copying and pasting data into the tool, and almost a quarter (22%) have done the same with PII/PCI.

    "With 82 percent of pastes coming from unmanaged personal accounts,
    enterprises have little to no visibility into what data is being shared, creating a massive blind spot for data leakage and compliance risks," the report says.

    Furthermore, roughly two in five files uploaded to generative AI sites also contain this type of information, while 39% of these uploads came from non-corporate accounts.

    ChatGPT is by far the most popular GenAI tool, with more than 90% of
    employees using it. The vast majority (around 83%) use just one tool. Other notable mentions include Gemini (15%), Claude (5%), and Copilot (around 3%).

    Via The Register

    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/watch-out-your-workers-might-be-pasting -company-secrets-into-chatgpt

    $$
    --- SBBSecho 3.28-Linux
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)