Businesses warned not to use open AI to prevent data leaks

MONDAY, DECEMBER 23, 2024

While recognising the value of artificial intelligence, the National Cyber Security Agency to put secure measures in place to guard against cybercrime

Organisations should use artificial intelligence (AI) wisely to prevent data leakage and negative impacts on their reputation, National Cyber Security Agency (NCSA) secretary-general AVM Amorn Chomchoey said today.

Noting that AI plays an important role in boosting efficiency and reducing costs, he warned that using this technology carelessly could have serious impacts.

Some organisations are currently processing their confidential data by using public AI, leading to data leakage, he said. He advised setting clear goals on using AI to ensure that the technology will actually benefit organisations, such as response to system failure and long-term cost effectiveness evaluation.

NCSA secretary-general AVM Amorn Chomchoey

Amorn went on to say that hackers now have more tricks up their sleeves in launching cyberattacks, such as making fake websites, installing malware on network systems or forging emails with AI to lure victims.

He noted that small and medium enterprises are at most risk of cybercrimes due to limited budgets for boosting cybersecurity. To tackle such impacts like customer data leakage and business confidence, he advised enhancing cybersecurity as follows:

  • Identify what issues can or cannot be done with AI to prevent data leakage.
  • Organise and host training to boost awareness on how to cope with cybercrimes, such as inspecting suspicious links in emails, setting up a safe password and using secure data backup.
  • Implement measures to prevent impacts on network systems, such as using firewall, data encryption, two-factor authentication and access right management.

Amorn confirmed that the public sector, including the NCSA, has launched training to boost awareness on cybersecurity in line with international standards to ensure that all businesses can cope with cyberattacks.