IT Brief UK - Technology news for CIOs & IT decision-makers
United Kingdom
Guides
#
artificial intelligence
#
digital transformation
#
disaster recovery
#
internet of things
#
work from home
Search
Story image
#
AI
#
Chatbots
#
Contact Centre
UK businesses warned about integration of AI chatbots
Fri, 1st Sep 2023
Author image
By Catherine Knowles, Journalist
Follow us

British officials are warning organisations about integrating artificial intelligence-driven chatbots into their businesses, saying that research has increasingly shown that they can be tricked into performing harmful tasks.

In a pair of blog posts due to be published Wednesday, Britain's National Cyber Security Centre (NCSC) said that experts had not yet got to grips with the potential security problems tied to algorithms that can generate human-sounding interactions - dubbed large language models, or LLMs.

The AI-powered tools are seeing early use as chatbots that some envision displacing not just internet searches but also customer service work and sales calls.

The NCSC says that could carry risks, particularly if such models were plugged into other elements organisation's business processes. Academics and researchers have repeatedly found ways to subvert chatbots by feeding them rogue commands or fool them into circumventing their own built-in guardrails.

Cyber expert Oseloka Obiora, Chief Technology Officer at RiverSafe says, “The race to embrace AI will have disastrous consequences if businesses fail to implement basic necessary due diligence checks."

Obiora says, ""Chatbots have already been proven to be susceptible to manipulation and hijacking for rogue commands, a fact which could lead to a sharp rise in fraud, illegal transactions, and data breaches."

“Instead of jumping into bed with the latest AI trends, senior executives should think again, asses the benefits and risks as well as implementing the necessary cyber protection to ensure the organisation is safe from harm,” he adds.

For example, an AI-powered chatbot deployed by a bank might be tricked into making an unauthorised transaction if a hacker structured their query just right, according to RiverSafe.

"Organisations building services that use LLMs need to be careful, in the same way they would be if they were using a product or code library that was in beta," the NCSC said in one its blog posts, referring to experimental software releases.

"They might not let that product be involved in making transactions on the customer's behalf, and hopefully wouldn't fully trust it. Similar caution should apply to LLMs," the NCSC commented.

Authorities across the world are grappling with the rise of LLMs, such as OpenAI's ChatGPT, which businesses are incorporating into a wide range of services, including sales and customer care.

The security implications of AI are also still coming into focus, with authorities in the U.S. and Canada saying they have seen hackers embrace the technology, RiverSafe states.

Related stories
Dropbox unveils new features for remote work, enhances Microsoft integration
New report reveals stark divide in global AI progression
Gartner unveils top four data & analytics trends for 2024
GitHub's 2FA initiative helps secure software supply chain
Hyland pioneers AI updates for increased efficiency & automation
Top stories
The messaging evolution and the fight against fraud
Zscaler introduces enhanced ZDX service for improved IT operations
The importance of cybersecurity training for software developers
HID acknowledged as Leader in Gartner Magic Quadrant for Indoor Location Services
Exclusive: How Darktrace is tackling AI-driven cybersecurity