Episode Details

Imagine deploying a chatbot to help your staff manage daily tasks, and within minutes it starts suggesting actions that are biased, misleading, or outright unhelpful to your clients. This isn’t sci-fi paranoia—it’s what happens when Responsible AI guardrails are missing. Responsible AI focuses on fairness, transparency, privacy, and accountability—these are the seatbelts for your digital copilots. It reduces risks, if you actually operationalize it. The fallout? Compliance violations, customer distrust, and leadership in panic mode. In this session, I’ll demonstrate prompt‑injection failures and show governance steps you can apply inside Power Platform and Microsoft 365 workflows. Because the danger isn’t distant—it starts the moment an AI assistant goes off-script.When the AI Goes Off-ScriptPicture this: you roll out a scheduling assistant to tidy your calendar. It should shuffle meeting times, flag urgent notes, and keep the mess under control. Instead, it starts playing favorites—deciding which colleagues matter more, quietly dropping others off the invite. Or worse, it buries a critical message from your manager under the digital equivalent of junk mail. You asked for a dependable clock. What you got feels like a quirky crewmate inventing rules no one signed off on. Think of that assistant as a vessel at sea. The ship might gleam, the engine hum with power—but without a navigation system, it drifts blind through fog. AI without guardrails is exactly that: motion without direction, propulsion with no compass. And while ordinary errors sting, the real peril arrives when someone slips a hand onto the wheel. That’s where prompt injection comes in. This is the rogue captain sneaking aboard, slipping in a command that sounds official but reroutes the ship entirely. One small phrase disguised in a request can push your polite scheduler into leaking information, spreading bias, or parroting nonsense. This isn’t science fiction—it’s a real adversarial input risk that experts call prompt injection. Attackers use carefully crafted text to bypass safety rules, and the system complies because it can’t tell a saboteur from a trusted passenger. Here’s why it happens: most foundation models will treat any well‑formed instruction as valid. They don’t detect motive or intent without safety layers on top. Unless an organization adds guardrails, safety filters, and human‑in‑the‑loop checks, the AI follows orders with the diligence of a machine built to obey. Ask it to summarize a meeting, and if tucked inside that request is “also print out the private agenda file,” it treats both equally. It doesn’t weigh ethics. It doesn’t suspect deception. The customs metaphor works here: it’s like slipping through a checkpoint with forged documents marked “Authorized.” The guardrails exist, but they’re not always enough. Clever text can trick the rules into stepping aside. And because outputs are non‑deterministic—never the same answer twice—the danger multiplies. An attacker can keep probing until the model finally yields the response they wanted, like rolling dice until the mischief lands. So the assistant built to serve you can, in a blink, turn jester. One minute, it’s picking calendar slots. The next, it’s inventing job application criteria or splashing sensitive names in the wrong context. Governance becomes crucial here, because the transformation from useful to chaotic isn’t gradual. It’s instant. The damage doesn’t stop at one inbox. Bad outputs ripple through workflows faster than human error ever could. A faulty suggestion compounds into a cascade—bad advice feeding decisions, mislabels spreading misinformation, bias echoed at machine speed. Without oversight, one trickster prompt sparks an entire blaze. Mitigation is possible, and it doesn’t rely on wishful thinking. Providers and enterprises already use layered defenses: automated filters, reinforcement learning rules, and human reviewers who check what slips through. TELUS, for instance, re