Let`s Explore ChatGPT, Microsoft Copilot, and the Risks to Data Security

AI is the new kid on the block, as confusing as the cosmos and our origins. Many organisations have embraced this technology with fervour, leaving us mere mortals wondering what’s going on. What is AI (Artificial Intelligence) and how safe is it?

AI is rapidly being embraced by many organisations including the big IT companies like Apple, Google, Microsoft to name but a few. The only problem is the rapid evolvement of the technology asks more questions than we have answers for. I have yet to find concrete proof that the technology out of the box is as safe as the providers want us to believe.

What does this mean for us and how secure is our data when using these applications or services offered by these tech giants? The arrival of ChatGPT brought AI to the forefront for the average person, sparking a boom. This tool can seemingly do our jobs for us, but this is just one aspect of AI, specifically NLP (Natural Language Processing).

Artificial Intelligence (AI) refers to the development of computer systems that can perform tasks typically requiring human intelligence. These tasks include recognising speech, making decisions, solving problems and identifying patterns. AI encompasses a variety of technologies, such as:

• Machine Learning: Algorithms that learn from data to make predictions or decisions.
• Deep Learning: A subset of machine learning involving neural networks with many layers.
• Natural Language Processing (NLP): Enabling machines to understand and respond to human language.
• Computer Vision: Allowing machines to interpret and make decisions based on visual data.

AI is used in many applications today, from virtual assistants like Siri and Alexa to recommendation systems on platforms like Netflix and Amazon.

Many people refer to AI as ChatGPT or Copilot. Other aspects of AI are a blur to many and they do not realise we are already deeply entrenched in the grips of tech giants and major companies like banks, insurance companies and finance companies.

This article focuses on ChatGPT and Copilot. ChatGPT is a leader in NLP and Microsoft is heavily invested in this technology with Copilot. It is a key driver within Microsoft, but very little is understood about the technology by the Public in general.

These are common questions with varying answers, leaving us confused and at odds with each other. ChatGPT is currently on version 4, soon to be version 5. How much do we really understand about its impact on our lives and data? Microsoft initially blocked all their staff from using ChatGPT until they fully understood the impact.

They then developed and improved their security products to understand Data Loss Prevention (DLP) better. This is designed to protect against data exfiltration using tools like ChatGPT and Copilot. Once they started this journey, they introduced Copilot to the world, causing a significant stir.

.

Copilot has three separate versions and is embedded in almost all Microsoft products – Windows 11, Edge, Bing and Microsoft 365 products. The versions are:

1. Copilot for 365: Fully integrated across all applications, both on the device and in the cloud. It uses the full potential of the Microsoft 365 stack and data within the organisation. It does not share your data outside your organisation.
2. Copilot Pro: It is like the above but designed to work in the cloud space only.
3. Bing Copilot: Originally named Bing Chat, this is the least secure product in the stack. It is a great tool for asking questions or producing documents, but any information uploaded is available to the world.

ChatGPT collects both your account-level information and conversation history, including your email address, device, IP address, location and any Public or Private information used in your prompts. Copilot is more complex, with different versions having varying levels of data access and security.

We need to take cybersecurity threats seriously. Ukuzimanya can assist you with a guided roadmap to achieve a secure environment for ChatGPT and Copilot implementation. Think carefully before adopting new technologies. Copilot is a phenomenal product but needs to be managed and understood.

Astutus is a solution we have developed to improve your security risks and allows us to assist with Copilot implementation. Don’t be caught off guard. The POPIA regulator is improving accountability for breaches. This October, take a decisive step towards your Cyber Security Wellness.