How Company Secrets End Up in ChatGPT (And How to Prevent It Without Blocking AI)

 

A developer just wanted to fix a problem faster.

They were debugging a query. The error message made no sense.

The documentation was outdated. As usual.

So they did what millions of capable employees now do every day:

They copied a real snippet from work.

Pasted it into ChatGPT. Got a clean, helpful answer.

Problem solved.

Ticket closed.

No alarms. No warnings.

And without realizing it, company secrets just left the building.

---

This isn't an employee failure

No one was careless.

No one was malicious.

No one thought twice.

Because nothing in the system told them they should.

This is the uncomfortable truth most companies avoid:

When smart people repeatedly do the same risky thing, the system is teaching them to do it.

---

Your DLP didn't fail. It was watching the wrong place.

Most security stacks are still designed for an older world.

They monitor:

• Email attachments
• File uploads
• API traffic
• Known SaaS destinations

But the leak didn't happen there.

It happened in a browser. Via clipboard. Through a prompt.

Copy → paste → submit.

That path bypasses most traditional controls completely.

So when teams say, "Our DLP failed", what they really mean is:

Our threat model never included this behavior.

---

Why blocking ChatGPT backfires

The reflex response is predictable:

"Block ChatGPT."

"Block Claude."

"Block all external LLMs."

On paper, this looks responsible.

In practice, it produces:

• Personal device usage
• Browser extensions
• Smaller, fragmented pastes
• Silence instead of questions

Risk doesn't disappear. It just becomes invisible.

And once engineers stop talking to security, you've lost the most important signal you had.

---

This is a system design problem, not an AI problem

Developers optimize for: Speed, Accuracy, Low friction

Security teams often optimize for: Control, Policy, After-the-fact detection

When those incentives collide, the faster system wins.

Every time.

So the real question isn't "How do we stop people?"

It's:

How do we redesign the system so the safe path is the fast path?

---

Step 1: Provide an approved AI path people actually want to use

An internal or enterprise-approved LLM only works if it's:

• Fast
• Reliable
• Easy to access (SSO, no tickets)
• Good enough to replace public tools

If the "safe" tool feels worse than ChatGPT, it will be ignored.

This isn't about trust. It's about usability.

People don't bypass controls to be rebellious. They bypass them to get work done.

---

Step 2: Stop trying to read prompts. Watch behavior instead.

Trying to inspect every prompt is a dead end.

You won't reliably see:

• What was pasted
• How it was transformed
• Where it went

But you can see behaviors that matter:

• Large clipboard copy events
• Copying from production systems into browsers
• Structured data patterns
• Sudden changes in paste volume

You don't need the content to detect the risk.

Attackers already know this.

Defenders are just catching up.

---

Step 3: Keep secrets from appearing on screens in the first place

The most effective control is also the least glamorous:

Don't expose raw secrets unless absolutely necessary.

That means:

• Masking sensitive fields by default
• Tokenizing internal identifiers
• Treating "view" as a privilege, not a default
• Restricting full production outputs

If someone never sees the secret, they can't paste it.

This is boring security.

It's also the kind that works.

---

Step 4: Train instincts, not compliance

Most AI training fails because it sounds like legal language.

"Employees must not input confidential information into AI tools."

That sentence does not survive:

• Deadlines
• Curiosity
• Pressure

A better rule is simpler:

If it would trigger an incident report, it doesn't belong in a prompt.

No flowcharts.

No policy PDFs.

Just a mental shortcut people can actually use.

---

Step 5: Explain the risk in executive language

Executives don't need to understand tokens or embeddings.

They understand this immediately:

AI prompts are unlogged outbound data transfers with no recall.

Once the risk is framed that way:

• Budget appears
• Tradeoffs become explicit
• Ownership becomes clear

Not because of fear.

Because of clarity.

---

The real lesson

This wasn't a junior developer problem.

It wasn't an AI problem.

It wasn't negligence.

It was a system built for a world where copy-paste wasn't a data exfiltration vector.

That world is gone.

The prompt is the new USB drive.

And if you're not actively redesigning for that reality, there's a good chance this is already happening inside your company- quietly, efficiently, and with the best intentions.

That's what makes it dangerous.

Also visit: https://quangntenemy.substack.com/p/how-company-secrets-end-up-in-chatgpt

A small moment that meant more than expected

A friend lost her phone.
As many of us know, a phone today isn't just a device - it's access to photos, messages, work tools, banking apps, and daily routines.

I helped her lock things down.
Passwords were changed, accounts secured, risks contained.
We remotely erased all data on the device and locked it completely.
Whatever was lost, it won't be misused.

The good news: her data is secure.
The difficult part: what was on that phone can't be recovered.
Safe doesn't always mean reversible.

Later, she gave me a gift.
A small ceramic piece - simple, thoughtful, made by hand.

It was a quiet reminder.

We work in a fast, digital world where systems can usually be fixed.
But trust, care, and real human gestures still matter just as much.

Sometimes the most meaningful outcomes aren't measured in recovery -
but in knowing the right steps were taken, at the right time.

Also visit: https://quangntenemy.substack.com/p/a-small-moment-that-meant-more-than

Cybersecurity Never Sleeps in December

 

🎄 As the holiday season approaches, the cybersecurity field enters one of its most energizing periods - when curiosity spikes, challenges go live, and the best minds quietly sharpen their edge.

December isn't just year-end reporting season; it's also when CTF players, WeChall challengers, and security professionals turn downtime into skill-time.

If you're looking for a constructive way to stay sharp, explore fresh problems, or simply enjoy the craft of problem-solving, the WeChall Christmas & New Year challenges (and many seasonal CTFs) are the perfect opportunity.

A calm December evening, a good puzzle, and that moment when the solution finally clicks - it's a different kind of holiday tradition.

🛡️ Fun WeChall Christmas challenges you should try:

- 2021 Christmas Hippety (solved by 111 people worldwide)

- 2021 Christmas Tweet (only solved by 19 people so far)

- 2021 Christmas Gifts (solved by 28 people)

- 2021 Christmas Grampa (solved by 267 people)

- 2021 Christmas Friday (solved by 53 people)

- 2020 Christmas Special (solved by 17 people)

- Old Years Eve 2020 (solved by 13 people)

- 2013 New Years Special (solved by 19 people)

Craving more? Share ideas or feedback on WeChall forum: https://www.wechall.net/forum-t1565/New_Challenge.html

🛡️ Notable December & Christmas-themed CTFs:

- WannaGame Championship 2025

- BackdoorCTF 2025

- niteCTF 2025

- SECCON CTF 14 Quals

- 0CTF 2025

- TSG CTF 2025

- ASIS CTF Finals 2025

- hxp 39C3 CTF

For developers, analysts, pentesters, and anyone who enjoys thinking deeply under low pressure, these events turn the end of the year into a chance to grow, reset, and rediscover the joy of solving hard problems.

Here's to a productive and engaging December ahead.

Also visit: https://quangntenemy.substack.com/p/cybersecurity-never-sleeps-in-december

If you treat lamb like beef, you've already lost the game

 

🐑 HINT for one of my sheep-related challenges! Pay close attention to the protocol below - it might give you a significant leg up.

Most people avoid grilling lamb (or mutton) for two reasons:
1. They think it's tough.
2. They fear the "gamey" flavor.

The reality? You aren't dealing with bad meat. You're using the wrong strategy.

Beef relies on intramuscular fat for tenderness. Sheep relies on enzymatic breakdown.

If you want to be the hero of the grill this weekend, stop using standard BBQ sauce. Switch to the "Yogurt Method".

Here is the protocol for the most tender skewers you will ever eat:

A. The "ROI" Marinade:

- The Base: 1 cup Greek Yogurt (The lactic acid breaks down tough fibers without ruining the texture).

- The Aromatics: 1 tbsp fresh Ginger paste + 1 tbsp Garlic paste.

- The Spice: 1 tbsp Cumin + 1 tbsp Coriander + 1 tsp Turmeric + Chili powder to taste.

- The Acid: A squeeze of Lemon.

B. The Execution:

- Marinate Long: Give it at least 6 hours. Overnight is better. Patience pays dividends here.

- High Heat: Grill on skewers over medium-high heat. You want a char on the yogurt coating before the inside dries out.

-The Golden Rule: Pull it at 135°F (57°C). Lamb must be pink. If it's gray, it's over.

- Rest: Let it sit for 5 minutes.

The result is smoky, char-grilled perfection that melts in your mouth - no knife required.

Mastering the grill is a lot like business: It's not about working harder with the heat; it's about preparation and timing.

What's on your grill this weekend?

Maybe this will be useful: https://quangntenemy.substack.com/p/if-you-treat-lamb-like-beef-youve

One tile out of place. One budget cut. One breach waiting.

The tile worker said, “My rate is 200.”
The homeowner bargained it down to 190.
They shook hands, thinking it was a harmless victory.

Then the wall was finished -
and there it is:
one tile slightly off.

Once you see it,
you can’t unsee it.

That’s the price of negotiating skill over craftsmanship.
You save a little upfront,
and you pay for it every time your eyes pass that wall.

Cybersecurity is no different.
Cut the budget by “just a little,”
skip “just one control,”
ignore “just one gap.”

And the system will carry that flaw quietly,
waiting for the day someone who knows where to look
comes along.

Small discounts
Small cracks.
Big consequences.

Drop a 💪 if you take pride in getting it done right the first time.

Read the full story: https://quangntenemy.substack.com/p/one-tile-out-of-place-the-hidden