Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


xpd

xpd

Geek @ Coastguard NZ
13769 posts

Uber Geek

Retired Mod
ID Verified
Trusted
Lifetime subscriber

#315542 24-Jul-2024 09:28
Send private message

Anyone else allowing this sort of AI to have access to your Teams environment ?

 

 

Is your company using AI at all, or holding off for now ?

 

 





       Gavin / xpd / FastRaccoon / Geek of Coastguard New Zealand

 

                      LinkTree

 

 

 


Create new topic
Andib
1364 posts

Uber Geek

ID Verified
Trusted

  #3263902 24-Jul-2024 10:01
Send private message

We have Copilot licencing so allow that for users within Teams (as Copilot for 365 data is kept within your tenant) but I wouldn't be allowing a third party AI access to our data,





<# 
       .DISCLAIMER
       Anything I post is my own and not the views of my past/present/future employer.
#>




networkn
Networkn
32358 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #3263905 24-Jul-2024 10:09
Send private message

Unless you know exactly how to limit access, what information you are giving it access to, you are setting yourself up for a world of misery. Maybe not today, or tomorrow, but for sure. 

 

If you want to implement something like this, you should do a course on how to control it first IMO. 

 

 


xpd

xpd

Geek @ Coastguard NZ
13769 posts

Uber Geek

Retired Mod
ID Verified
Trusted
Lifetime subscriber

  #3263917 24-Jul-2024 10:32
Send private message

Yeah I've disabled it for now. 

 

So many users think AI is a shortcut to things, but seen lots of examples where its caused more work anyway.

 

 





       Gavin / xpd / FastRaccoon / Geek of Coastguard New Zealand

 

                      LinkTree

 

 

 




amanzi
Amanzi
1301 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #3263921 24-Jul-2024 10:51
Send private message

I would not be granting any third-party access to your Teams/Exchange environment without thoroughly reviewing and evaluating it. Doesn't really matter if it's AI or not, although given the current hype, I would be more concerned with companies rushing half-baked AI solutions to market.


networkn
Networkn
32358 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #3263927 24-Jul-2024 11:30
Send private message

A colleague of ours in Australia was instructed to put Copilot in their environment by the CEO. He strenuously remonstrated against such action. No limits were put in place. 

 

 

 

Didn't take long for a lowly staff member to work out how to type questions like 'what is our CEOpaid' and the like. It was turned off much faster than it was turned on.

 

Proper scoping is required. Given the rate of change for AI currently, I wouldn't trust that how it works today, and how it works next week, are the same.


gehenna
8520 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #3263945 24-Jul-2024 12:31
Send private message

That just means the information was accessible in the first place.  Whether AI surfaces the answer quickly, or someone goes manually hunting and finds it, the cause is security and permissions, not AI. 


Varkk
643 posts

Ultimate Geek


  #3263957 24-Jul-2024 13:21
Send private message

networkn:

 

A colleague of ours in Australia was instructed to put Copilot in their environment by the CEO. He strenuously remonstrated against such action. No limits were put in place. 

 

 

 

Didn't take long for a lowly staff member to work out how to type questions like 'what is our CEOpaid' and the like. It was turned off much faster than it was turned on.

 

Proper scoping is required. Given the rate of change for AI currently, I wouldn't trust that how it works today, and how it works next week, are the same.

 

 

We are currently trialling Copilot at work and that is an example our CIO keeps repeating of people using it to scope out information they normally wouldnt be privy to. No one has been brave enough yet to point out that information is already published in our annual report and public disclosure documents.


 
 
 

Trade NZ and US shares and funds with Sharesies (affiliate link).
networkn
Networkn
32358 posts

Uber Geek

ID Verified
Trusted
Lifetime subscriber

  #3263964 24-Jul-2024 13:52
Send private message

gehenna:

 

That just means the information was accessible in the first place.  Whether AI surfaces the answer quickly, or someone goes manually hunting and finds it, the cause is security and permissions, not AI. 

 

 

I didn't say AI was the issue, but controlling who can obtain what information from AI is done both inside the AI Tools and the structures AI has access to. 

 

In the case I mentioned above, the HR Folder was accessible to HR and CXO's only, of which the pleb most certainly did not have access, but inside the tool, the scope for the return of information in relation to a query was open by default.  I believe, at least in copilot, it's a relatively recent change that it's off by default. 

 

I wouldn't bet my house on defaults set by MS. 


jrdobbs
106 posts

Master Geek


  #3264526 26-Jul-2024 09:31
Send private message

networkn:

 

I wouldn't bet my house on defaults set by MS. 

 

 

I wouldn't bet my house on anything MS.


BlakJak
1275 posts

Uber Geek

Trusted

  #3264716 26-Jul-2024 16:01
Send private message

networkn:

 

gehenna:

 

That just means the information was accessible in the first place.  Whether AI surfaces the answer quickly, or someone goes manually hunting and finds it, the cause is security and permissions, not AI. 

 

 

I didn't say AI was the issue, but controlling who can obtain what information from AI is done both inside the AI Tools and the structures AI has access to. 

 

In the case I mentioned above, the HR Folder was accessible to HR and CXO's only, of which the pleb most certainly did not have access, but inside the tool, the scope for the return of information in relation to a query was open by default.  I believe, at least in copilot, it's a relatively recent change that it's off by default. 

 

I wouldn't bet my house on defaults set by MS. 

 

 

Copilot will use your own privileges to search your own information. If it's able to find stuff like that, it's been filed incorrectly, and all that's happened is that it's easier to find because something else is doing all the legwork.  So it's basically removing the obscurity that has otherwise provided security.

 

You're absolutely right and when people talk to me about the likes of Copilot I just have to remind them that they need to be very, very confident that their house is in order before they let an AI run rampant within it.  Heck, tenant-search is a good place to start. Chuck some words into your Sharepoint search, then adjust the scope to tenant-wide and see what you can find!!

 

As for third party AI tools for meeting notes etc - agree with the earlier commenters, you need to understand what the tool is, and isn't, doing with its access to your stuff. Letting an AI take meeting notes seems to be in hot demand, because people hate taking their own minutes. I see it as laziness personally. I also note the observations from this GP who experimented with AI for taking practice notes; without the extra time to consider the meeting, their memory of consultations suffered. This leads to time lost down track, or a more 'surface' recollection rather than genuine memory.





No signature to see here, move along...

gehenna
8520 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #3264776 26-Jul-2024 20:24
Send private message

networkn:

 

but inside the tool, the scope for the return of information in relation to a query was open by default.  I believe, at least in copilot, it's a relatively recent change that it's off by default. 

 

 

I'd love to see some evidence of that.  What you're describing should still be impossible if permissions are correct.  You're implying, which I may well be misreading since I've had flu for a week, that Copilot ignores permissions and returns a response regardless, and there's a setting that lets it do that even if the permissions are correct, which isn't the case in my testing, and would be a global shitstorm if it's true.  It warrants investigation if it's true, but it sounds more like whoever you're talking to didn't have permissions in place and is blaming it on Copilot.


plas
455 posts

Ultimate Geek


  #3264910 26-Jul-2024 21:44
Send private message

gehenna:

 

networkn:

 

but inside the tool, the scope for the return of information in relation to a query was open by default.  I believe, at least in copilot, it's a relatively recent change that it's off by default. 

 

 

I'd love to see some evidence of that.  What you're describing should still be impossible if permissions are correct.  You're implying, which I may well be misreading since I've had flu for a week, that Copilot ignores permissions and returns a response regardless, and there's a setting that lets it do that even if the permissions are correct, which isn't the case in my testing, and would be a global shitstorm if it's true.  It warrants investigation if it's true, but it sounds more like whoever you're talking to didn't have permissions in place and is blaming it on Copilot.

 

 

Microsoft is very clear about how copilot operates, and it matches what I've seen from our pilot group. Its also highlighted that our SharePoint permissions need some work, which I suspect is the case for many orgs. Anything that CoPilot has returned that is sensitive has also been found via search due to incorrect permissions.

 

https://learn.microsoft.com/en-us/copilot/microsoft-365/microsoft-365-copilot-privacy#how-does-microsoft-copilot-for-microsoft-365-protect-organizational-data

 

 


gehenna
8520 posts

Uber Geek

Moderator
Trusted
Lifetime subscriber

  #3264911 26-Jul-2024 21:52
Send private message

Yeah that's what I'm saying.  Anything Copilot surfaces should only be due to permissions allowing it (or just not set in the first place).  The post I was replying to implies that even if permissions are explicitly disallowing access, Copilot could bypass the permissions and return the info anyway.  I don't see that behaviour, but if others do then I want to know more.  


Create new topic





News and reviews »

Air New Zealand Starts AI adoption with OpenAI
Posted 24-Jul-2025 16:00


eero Pro 7 Review
Posted 23-Jul-2025 12:07


BeeStation Plus Review
Posted 21-Jul-2025 14:21


eero Unveils New Wi-Fi 7 Products in New Zealand
Posted 21-Jul-2025 00:01


WiZ Introduces HDMI Sync Box and other Light Devices
Posted 20-Jul-2025 17:32


RedShield Enhances DDoS and Bot Attack Protection
Posted 20-Jul-2025 17:26


Seagate Ships 30TB Drives
Posted 17-Jul-2025 11:24


Oclean AirPump A10 Water Flosser Review
Posted 13-Jul-2025 11:05


Samsung Galaxy Z Fold7: Raising the Bar for Smartphones
Posted 10-Jul-2025 02:01


Samsung Galaxy Z Flip7 Brings New Edge-To-Edge FlexWindow
Posted 10-Jul-2025 02:01


Epson Launches New AM-C550Z WorkForce Enterprise printer
Posted 9-Jul-2025 18:22


Samsung Releases Smart Monitor M9
Posted 9-Jul-2025 17:46


Nearly Half of Older Kiwis Still Write their Passwords on Paper
Posted 9-Jul-2025 08:42


D-Link 4G+ Cat6 Wi-Fi 6 DWR-933M Mobile Hotspot Review
Posted 1-Jul-2025 11:34


Oppo A5 Series Launches With New Levels of Durability
Posted 30-Jun-2025 10:15









Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.