Bells IT Support

IT Support Kent - Cyber Security

How ChatGPT Can Help and Hinder Data Center Cybersecurity

We explore the benefits and dangers of cybersecurity professionals using AI tools like ChatGPT in the data centre space – as well as how they’re already being leveraged by bad actors.

The world changed on Nov. 30, when OpenAI released ChatGPT to an unsuspecting public.

Universities scrambled to figure out how to give take-home essays if students could just ask ChatGPT to write it for them. Then ChatGPT passed law school tests, business school tests, and even medical licensing exams. Employees everywhere began using it to create emails, reports, and even write computer code.

It’s not perfect and isn’t up to date on current news, but it’s more powerful than any AI system that the average person has ever had access to before. It’s also more user-friendly than enterprise-grade systems’ artificial intelligence.

It seems that once a large language model like ChatGPT gets big enough, and has enough training data, enough parameters, and enough layers in its neural networks, weird things start to happen. It develops “emergent properties” not evident or possible in smaller models. In other words, it starts to act as if it has common sense and an understanding of the world – or at least some kind of approximation of those things.

Major technology companies scrambled to react. Microsoft invested $10 billion in OpenAI and added ChatGPT functionality to Bing, suddenly making the search engine a topic of conversation for the first time in a long time.

Google declared a “Code Red,” announced its own chat plans and invested in OpenAI rival Anthropic, founded by former OpenAI employees and with its own chatbot, Claude.

Amazon announced plans to build its own ChatGPT rival and announced a partnership with yet another AI startup, Hugging Face. And Facebook’s Meta will be fast-tracking its own AI efforts.

Fortunately, security pros can also use this new technology. They can use it for research, to help write emails and reports, to help write code, and in more ways that we’ll dig into.

The troubling part is that the bad guys are also using it for all those things, as well as for phishing and social engineering. They’re also using it to help them create deep fakes at a scale and level of fidelity unimaginable a few short months ago. Oh, and ChatGPT itself might also be a security threat.

Let’s go through these main data centre security topics one by one, starting with the ways malicious actors could use – and, in some cases, are already using – ChatGPT. Then we’ll explore the benefits and dangers of cybersecurity professionals using AI tools like ChatGPT.

How the Bad Guys are Using ChatGPT

Malicious actors are already using ChatGPT, including Russian hackers. After the tool was released on Nov. 30, discussions on Russian language sites quickly followed, sharing information about how to bypass OpenAI’s geographical restrictions by using VPNs and temporary phone numbers.

When it comes to how exactly ChatGPT will be used to help spur cyberattacks, in a Blackberry survey of IT leaders released in February, 53% of respondents said it would help hackers create more believable phishing emails and 49% pointed to its ability to help hackers improve their coding abilities.

Another finding from the survey: 49% of IT and cybersecurity decision-makers said that ChatGPT will be used to spread misinformation and disinformation, and 48% think it could be used to craft entirely new strains of malware. A shade below that (46%) said ChatGPT could help improve existing attacks.

After all, the AI model has read everything ever publicly published. “Every research vulnerability report,” Hinchcliffe said. “Every forum discussion by all the security experts. It’s like a super brain on all the ways you can compromise a system.”

That’s a frightening prospect.

And, of course, attackers can also use it for writing, he added. “We’re going to be flooded with misinformation and phishing content from all places.”

How ChatGPT Can Help Data Center Security Pros

When it comes to data centre cybersecurity professionals using ChatGPT, Jim Reavis, CEO at Cloud Security Alliance, said he’s seen some incredible viral experiments with the AI tool over the past few weeks.

“You’re seeing it write a lot of code for security orchestration, automation and response tools, DevSecOps, and general cloud container hygiene,” he said. “There are a tremendous amount of security and privacy policies being generated by ChatGPT. Perhaps, most noticeably, there are a lot of tests to create high quality phishing emails, to hopefully make our defences more resilient in this regard.”

In addition, several mainstream cybersecurity vendors have – or will soon have – similar technology in their engines, trained under specific rules, Reavis said.

“We have also seen tools with natural language interface capabilities before, but not a wide open, customer facing ChatGPT interface yet,” he added. “I expect to see ChatGPT-interfaced commercial solutions quite soon, but I think the sweet spot right now is the systems integration of multiple cybersecurity tools with ChatGPT and DIY security automation in public clouds.”

In general, he said, ChatGPT and its counterparts have great promise to help data centre cybersecurity teams operate with greater efficiency, scale up constrained resources and identify new threats and attacks.

“Over time, almost any cybersecurity function will be augmented by machine learning,” Reavis said. “In addition, we know that malicious actors are using tools like ChatGPT, and it is assumed you are going to need to leverage AI to combat malicious AI.”

How Mimecast is Using ChatGPT

Email security vendor Mimecast, for example, is already using a large language model to generate synthetic emails to train its own phishing detection AIs.

“We normally train our models with real emails,” said Jose Lopez, principal data scientist and machine learning engineer at Mimecast.

Creating synthetic data for training sets is one of the main benefits of large language models like ChatGPT. “Now we can use this large language model to generate more emails,” Lopez said.

He declined to say which specific large language model Mimecast was using. He said this information is the company’s “secret sauce.”

Mimecast is not currently looking to detect whether incoming emails are generated by ChatGPT, however. That’s because it’s not only the bad guys who are using ChatGPT. The AI is such a useful productivity tool that many employees are using it to improve their own, completely legitimate communications.

Lopez himself, for example, is Spanish and is now using ChatGPT instead of a grammar checker to improve his own writing.

Lopez is also using ChatGPT to help write code – something many security professionals are likely doing.

“In my daily work, I use ChatGPT every day because it’s really useful for programming,” Lopez said. “Sometimes it’s wrong, but it’s right often enough to open your head to other approaches. I don’t think ChatGPT is going to convert someone who has no ability into a super hacker. But if I’m stuck on something, and don’t have someone to talk to, then ChatGPT can give you a fresh approach. So I use it, yes. And it’s really, really good.”

The Rise of AI-Powered Security Tools

OpenAI has already begun working to improve the accuracy of the system. And Microsoft, with Bing Chat, has given it access to the latest information on the Web.

The next version is going to be a dramatic jump in quality, Lopez added. Plus, open-source versions of ChatGPT are on their way.

“In the near future, we’ll be able to fine-tune models for something specific,” he said. “Now you don’t just have a hammer – you have a whole set of tools. And you can generate new tools for your specific needs.”

For example, a company can fine-tune a model to monitor relevant activity on social networks and look for potential threats. Only time will tell if results are better than current approaches.

Adding ChatGPT to existing software also just got easier and cheaper; On March 1, OpenAI released an API for developers to access ChatGPT and Whisper, a speech-to-text model.

Enterprises in general are rapidly adopting AI-powered security tools to deal with fast-evolving threats that are coming in at a larger scale than ever before.

According to the latest Mimecast survey, 92% of companies are either already using or plan to use AI and machine learning to bolster their cybersecurity.

In particular, 50% see benefits in using it for more accurate threat detection, 49% for an improved ability to block threats, and 48% for faster remediation when an attack has occurred.

And 81% of respondents said that AI systems that provide real-time, contextual warnings to email and collaboration tool users would be a huge boon.

“Twelve percent went so far as to say that the benefits of such a system would revolutionize the ways in which cybersecurity is practiced,” the report said.

AI tools like ChatGPT can also help close the cybersecurity skills shortage gap, said Ketaki Borade, senior analyst in Omdia’s cybersecurity’s practice. “Using such tools can speed up the simpler tasks if the prompt is provided correctly and the limited resources could focus on more time-sensitive and high-priority issues.”

It can be put to good use if done right, she said.

“These large language models are a fundamental paradigm shift,” said Yale Fox, IEEE member and founder and CEO at Applied Science Group. “The only way to fight back against malicious AI-driven attacks is to use AI in your defences. Security managers at data centers need to be upskilling their existing cybersecurity resources as well as finding new ones who specialize in artificial intelligence.”

The Dangers of Using ChatGPT in Data Centers

As discussed, AI tools like ChatGPT and Copilot can make security professionals more efficient by helping them write code. But, according to recent research from Cornell University, programmers who used AI assistants were more likely to create insecure code, while believing it to be more secure than those who didn’t.

And that’s only the tip of the iceberg when it comes to the potential downsides of using ChatGPT without considering the risks.

There have been several well-publicized instances of ChatGPT or Bing Chat providing incorrect information with great confidence, making up statistics and quotes, or providing completely erroneous explanations of particular concepts.

Someone who trusts it blindly can end up in a very bad place.

“If you use a ChatGPT-developed script to perform maintenance on 10,000 virtual machines and the script is buggy, you will have major problems,” said Cloud Security Alliance’s Reavis.

Risk of Data Leakage

Another potential risk of data centre security professionals using ChatGPT is that of data leakage.

The reason that OpenAI made ChatGPT free is so that it could learn from interactions with users. So, for example, if you ask ChatGPT to analyse your data centre’s security posture and identify areas of weakness, you’ve now taught ChatGPT all about your security vulnerabilities.

Now, take into account a February survey by Fishbowl, a work-oriented social network, which found that 43% of professionals use ChatGPT or similar tools at work, up from 27% a month prior. And if they do, 70% of them don’t tell their bosses. The potential security risks are high.

That’s why JPMorgan, Amazon, Verizon, Accenture and many other companies have reportedly prohibited their staff from using the tool.

The new ChatGPT API released by OpenAI this month will allow companies to keep their data private and opt out of using it for training, but there’s no guarantee that there won’t be any accidental leaks.

In the future, once open-source versions of ChatGPT are available, data centers will be able to run it behind their firewalls, on premises, safe from possible exposure to outsiders.

Ethical Concerns

Finally, there’s the potential ethical risks of using ChatGPT-style technology for internal data centre security, said Carm Taglienti, distinguished engineer at Insight.

“These models are super good at understanding how we communicate as humans,” he said. So a ChatGPT-style tool that has access to employee communications might be able to spot intentions and subtext that would indicate a potential threat.

“We’re trying to protect against hacking of the network and hacking of the internal environment. Many breaches take place because of people walking out the door with things,” he said.

Something like ChatGPT “can be super valuable to an organization,” he added. “But now we’re getting into this ethical area where people are going to profile me and monitor everything I do.”

That’s a Minority Report-style future that data centers might not be ready for.

Source: How ChatGPT Can Help and Hinder Data Center Cybersecurity | Data Center Knowledge | News and analysis for the data center industry

Infinity Fitness UK LTD

  • Size: SME | < 20 Employees | 2 locations
  • Industry: Fitness

Infinity Fitness approached Bells IT in 2018 after being recommended by other clients for our services. They were looking for new connectivity and voice solutions for their facility in Kent. They were due to open another centre within a few months and wanted the ability of standardising their WiFi and calls for cross-gym memberships. Infinity Fitness learned about our services within CCTV, Help Points, Alarms and other services and quickly decided that we were the right team for them.

We designed a WiFi an voice solution that was quickly implemented at both sites for the use of staff, members and coffee shop users. Bells IT also supported the door access and CCTV installations. We have developed a long relationship with Infinity Fitness and are providing the on going support for all solutions. For Infinity Fitness, Bells IT Provided the following solutions:

  • Technology (All Solutions)
  • Connectivity and Voice
    • Hosted Telephony
    • FTTC Connections (Multiple)
    • FTTPoD Connection
    • ADSL AnnexM Connection
  • Security Solutions
    • CCTV
    • Anti-Virus
    • Security Firewalls
    • Email Security
    • Door Access

Evergreen Care Bexley

  • Size: Charity | < 20 Employees | 1 Location
  • Industry: Community Care

Evergreen were introduced to Bells IT Support by a mutual client. Evergreen decided to appoint Bells IT Support as their go-to IT department. Evergreen Care required an email migration to Microsoft Office 365 while using all available charitable licenses. Bells IT Support have also deployed a new private cloud for Evergreen Care to store their data and database. This ensures that their IT is kept up-to-date and secure.

Solutions currently provided by Bells IT Support

  • Technology (All Solutions)
  • Security Solutions
    • Anti-Virus

Evergreen care provides an invaluable service to the elderly community with Bexley and Bromley. They rely heavily on support from local community funding and from volunteers. If you are able to assist this great local charity, please do so by going to their website. HTTPS://WWW.EVERGREENCAREBEXLEY.ORG/

DWG Group

  • Size: SME | < 50 Employees | 1 Location
  • Industry: Construction

DWG Group have been a long-standing client of Bells IT Support. Bells IT Support initially started working with DWG Group in 2014 when they were looking to expand and required a server. We proposed a few options and decided the best solution was to provide a small business server, keeping email and files in-house with 4-hourly backups and a daily offsite backup. DWG grew and decided to take on more of the services that Bells had to offer, such as on-premise telephony utilising the Avaya products and more recently our CCTV and Alarm offerings. DWG have now moved to a cloud-based email using the Office 365 infrastructure with an up to date onsite server.

DWG currently use Bells IT Support for the following solutions:

  • Technology (All Solutions)
  • Connectivity and Voice
    • On-Premise Telephony
    • FTTC Connection
    • EFM Circuit
    • ISDN Circuits
  • Security Solutions
    • CCTV
    • Alarm
    • Anti-Virus
    • Security Firewalls
    • Email Security


  • Size: SME | < 20 Employees | 1 Location
  • Industry: Construction, Health and Safety

CSCS contacted Bells IT Support in 2017 after putting their technology requirements out to tender. Bells IT Support placed a tender and met with the board to discuss their requirements and produce a plan of different options to understand what was best for them. After a couple of meetings and discussing different options and how things would work going forward, CSCS knew that Bells IT Support were the right company for their needs. With the immediate changes approaching such as moving offices, server upgrades, telephony upgrades and the ability to reduce their IT support queries, Bells IT understood all of their requirements and discussed options and plans to suit their needs and budget, as well as delivering all services on-time.  With users now working globally, they are able to all function and work from anywhere.


Bells IT Support currently provide CSCS with the following solutions:

  • Technology (All Solutions)
  • Connectivity and Voice
    • Hosted Telephony
  • Security Solutions
    • Anti-Virus
    • Security Firewalls
    • Email Security
  • Digital Solutions
    • Copier Solutions
    • Video Conferencing

A testimonial from CSCS:

“Switching IT provider can be a daunting prospect for your business. What if something goes wrong and the business is impacted. However, during our first consultation with Bells IT we were sure that we were talking to the right people. The team at Bells are very knowledgeable and act professionally at all times. The actual migration was carried out seamlessly and much quicker than expected. Since switching to Bells IT our technical issues have significantly reduced, response times have greatly improved and our IT support costs have come down. Bells IT have surpassed our expectations.”

Carepoint Services LTD

  • Size: < 50 Employees | 4 Locations
  • Industry: Community Care

Carepoint Services began using Bells IT Support in 2016 after deciding to switch IT provider. Carepoint had a newly installed server and required some support for their staff and software. Bells IT support put a proposal together to support their end users, manage their server and maintain their backups. Over the last two years, Carepoint have grown into three new locations and have required more services from Bells IT. We have delivered a bespoke private cloud solution utilising Dell thin clients for access their servers in any office. Carepoint now have the peace of mind knowing that their servers are up-to-date and secured. This allows them to undertake bigger tenders and grow their business further.


Current solutions provided by Bells IT Support are:

  • Technology (All Solutions)
  • Connectivity and Voice
    • Hosted Telephony
    • FTTC Connections (Multiple)
    • Fibre Leased Line (Multiple)
  • Security Solutions
    • Anti-Virus
    • Security Firewalls
    • Email Security

Supreme Care Services

  • Size: > 65 Employees | 12 Locations
  • Industry: Community Care

Supreme Care Services first contacted Bells IT to discuss the support for their entire IT infrastructure. Supreme Care have an enterprise setup with 65 users spread across 12 sites. Upon our first discussions, Supreme Care felt that Bells IT was the right company to choose. After being left with unresolved issues from their previous IT company, they decided it was time to change. The system previously implemented included over 30 servers all for basic roles. Bells IT redesigned their infrastructure and have narrowed this down to jus 5 servers without any performance loss. A shift from on-premise exchange to Microsoft 365, reducing exchange licensing and the need for servers has allowed Supreme flexibility and better integration with their other core systems.

Since working with Supreme and building a growing relationship, Bells IT now supply manage the following solutions :

  • Technology (All Solutions)
  • Connectivity and Voice
    • Hosted Telephony
    • FTTC Connections (Multiple)
    • Fibre Leased Line (Multiple)
  • Security Solutions
    • Anti-Virus
    • Security Firewalls
    • Email Security

Rainbow Medical Services

  • Size: < 30 Employees | 1 Location
  • Industry: Specialized Care

Rainbow Medical Services were introduced to Bells IT after being recommended by another client. Based on the support and knowledge they received, they suggested we were the right company for their needs. After our first discussions, Rainbow Medical Services, who have staff in multiple countries, decided Bells IT were best to take over their services.

While reviewing the current setup for Rainbow, Bells IT have made suggestions to migrate their email to Microsoft 365, migrate their database to a cloud system and provide a new file server.


We are currently providing Rainbow Medical Services with Technology Solutions and Broadband Solutions.