Addressing AI Tools & Account Threats in Security Policies

Photo by Mohamed Hassan from PxHere

With New AI Tools & Account Takeover Threats,

Enhancing Employee Security Policies is Key

April 12, 2024 CyberWyoming Webinar

In light of new AI tools and account takeover threats, CyberWyoming emphasizes the need to update employee security policies.

Evaluating AI Tools for Small Businesses
The recent CyberWyoming webinar discussed the potential and risks of using AI tools for small businesses with an emphasis of the importance of evaluating AI tools based on their security features, business needs, and the data they use for training.

Demonstrating Claude AI, using the scenario of writing press releases and blogs, as an example to illustrate small business uses, CyberWyoming highlighted the privacy implications of using AI tools.

“Any personal data entered as input could be returned as output and could be used for training the AI model,” said Laura Baker, Executive Director for CyberWyoming.

CyberWyoming offered a free cloud system/AI tool evaluation form to any business in Wyoming that wants to use it. “Security of company information is everyone’s job, and so when an employee asks to use a new AI tool, require them to do a little bit of research on the tool’s security and privacy policies and then discuss the findings at a staff meeting,” said Baker.

Office Management Plugins and AI Education
The webinar also discussed the use of AI plugins for office management, highlighting the need for a regular security review and risk assessment. 

Account Takeover 
Witnessing an increased threat of account takeover, CyberWyoming recommended the use of two-factor authentication for social media accounts to prevent unauthorized access. “When you invite an employee to help you maintain your Facebook page, they are using their personal Facebook user ID and password. Ensuring that they have 2FA on their account before making them an admin will protect your company’s page,” said Baker.

Leadership Pledge
Lastly, the webinar stressed the importance of a leadership pledge to prevent scams, such as gift card scams. Often scams prey on the fact that ‘the boss’ is out of the office for an event, which can be publicized on the company’s social media accounts. So, before management leaves for the event, they should have a talk with staff about what they may or may not ask for, provide their personal cell number for questions, and encourage staff members to call directly if any financial requests or user IDs/passwords are involved.

The meeting summary provided in this blog post was generated using Zoom’s AI Companion, but edited and reviewed by humans.

Share:

Register to Receive the Tech Joke of the Week!

This Week's Joke:

How many programmers does it take to change a light bulb?

None, it is a hardware problem!

More Posts: