"The interim leader of the US's top civilian cyber defense agency uploaded sensitive government contracting documents into a publicly accessible version of ChatGPT. This occurred last summer, but came to light yesterday (Jan. 27) in a report by Politico. The event triggered internal cybersecurity alerts and a Department of Homeland Security-level review into whether federal information had been improperly exposed, according to four DHS officials familiar with the matter."
"The incident involved Madhu Gottumukkala, the acting director of the Cybersecurity and Infrastructure Security Agency, who is currently the highest-ranking political official at CISA. The agency is responsible for defending federal networks and critical infrastructure against cyber threats from sophisticated adversaries such as Russia and China. While none of the documents uploaded were classified, the materials were marked "for official use only," a designation intended to restrict sensitive information from public dissemination."
Madhu Gottumukkala, acting director of the Cybersecurity and Infrastructure Security Agency, uploaded government contracting documents marked 'for official use only' into a publicly accessible ChatGPT instance last summer. Cybersecurity sensors detected the uploads in August and generated multiple automated alerts in the first week. Gottumukkala had requested special permission to use ChatGPT after arriving at CISA in May, while the AI tool remained blocked for most DHS employees over data retention concerns. The alerts prompted a Department of Homeland Security-level review and an internal assessment to determine whether the uploads exposed federal information or caused security, operational, or reputational risks. None of the documents were classified.
Read at TechRepublic
Unable to calculate read time
Collection
[
|
...
]