Security Awareness - July 2025
Hello Everyone,
A new security concern has been identified involving the use of AI-powered features across various platforms. Cyber-criminals are leveraging a technique known as prompt injection to manipulate AI tools—such as email summarizers, chatbots, and virtual assistants—to deliver stealthy phishing attacks, often without using obvious links or attachments.
Here’s how you can protect yourself and the company:
- Be cautious with AI-generated content – Avoid relying on AI tools to summarize or interpret messages from unknown or untrusted sources.
- Review AI outputs carefully – Look for inconsistencies or unusual suggestions, especially those urging immediate action or asking to share sensitive information.
- Report anything suspicious – If an AI-generated summary or recommendation seems off, flag the message and notify IT.
- Use critical thinking – Never call numbers, click links, or share information based solely on AI-generated suggestions.
This emerging threat highlights how attackers can exploit even trusted technologies. Stay informed, stay alert, and when in doubt—ask before acting.