FIRESIDES WITH PETE · ABOUT THE SPEAKER CYBER // DEFENCE

Peter Bassill

Chief Cyber Defender · CYBER // DEFENCE

30+

Years on the consoles

Offensive and defensive cyber security, since the late nineties.

200+

Major breach investigations

Led from page-out to resolution. Including the ones nobody wrote about.

Letters after the name

FBCS, 2× MA, CISSP, CRT, OSCP, CISM, GCIA, G.PEN.

Regulatory adviser

Co-Chair of the EU Incident Response working group.

Regulatory expert

GDPR · ICO · Cyber Essentials · ISO 27001. The unglamorous half.

SME

Board adviser

Board-level cyber strategy for SME leadership teams who'd rather talk in plain English.

FIRESIDES WITH PETE cyber-defence.io 01 / 08

FIRESIDES WITH PETE FORTY-FIVE MINUTES · WITH QUESTIONS

Oversharing
with AI?

Is it OK to share with an AI? Possibly. Maybe.

Peter Bassill

CHIEF CYBER DEFENDER · CYBER // DEFENCE

cyber-defence.io
slides + 10 min Q&A

$ grep -r "uploaded" ~/chat-logs

What are people actually sharing?

01 Source
code. "can you refactor this for me"

02 API
keys. often as a debug stack trace

03 CVs. their own. also other people's.

04 Financial records. "summarise these for me"

05 HR
records. whole spreadsheets. real names.

FIRESIDES WITH PETE oversharing with AI? 03 / 08

$ whoami | rev

And who are they sharing it with?

A Virtual
PA. "can you book this for me"

B Virtual
GF. no, really. it is a category.

C "Just a
chatbot." that quotes are doing a lot of work.

D Data
analytics. third-party. usually free. always isn't.

FIRESIDES WITH PETE oversharing with AI? 04 / 08

PROMPT INJECTION · MODEL LEAKS · TRAINING CORPORA · SUBPOENA

What could possibly go wrong?

Ooops

. . . . . .

FIRESIDES WITH PETE oversharing with AI? 05 / 08

THE QUIET PART, OUT LOUD

Why do we share?

Because, simply, we love a chat.

FIRESIDES WITH PETE oversharing with AI? 06 / 08

SHADOW IT · SHADY IT · WHATEVER YOU CALL IT

Just because you said yes…

…does it mean your staff are using the right tools?

FIRESIDES WITH PETE oversharing with AI? 07 / 08

STAYING SAFE · A SHORT LIST, NOT A MANIFESTO

Use it,

— but use it right.

SPEAKER

Peter Bassill

FIRM

cyber-defence.io

CONTACT

comms [at] peterbassill {dot} com

FIRESIDES WITH PETE questions? 08 / 08

Peter Bassill

Oversharingwith AI?

What are people actually sharing?

And who are they sharing it with?

What could possibly go wrong?

Why do we share?

Just because you said yes…

Use it,

Oversharing
with AI?