July 2026

Cranston Chronicles Newsletter Image

Understanding AI Today: No Longer Just a Chatbot

When ChatGPT launched in late 2022, using it was simple: you typed a prompt, and it generated text in response. That text came from a statistical model trained on data available at the time. If you asked ChatGPT about anything that had happened more recently, it either couldn’t help or would confidently make stuff up.

The chat interface that today’s AI systems still rely on has become more of a control panel than the system itself. What happens after you press Return may involve Web searches, file analysis, code execution, connected accounts, and even digital-world actions—all orchestrated behind the scenes. You need to understand what’s happening behind the chat box to evaluate the accuracy, quality, and utility of the answers that appear there.

Under the Hood of an AI System

The capabilities of a modern AI system include:

  • Models generate text, analyze images, and work through problems. This is the traditional “AI” part, but it has improved hugely through better training techniques, longer conversations and documents, and extended reasoning time. Cutoff dates for training models remain an issue—some AIs think macOS 26 is still in beta.
  • Retrieval pulls information from the Web, uploaded documents, or connected data sources. When an AI cites a source, it’s usually because retrieval happened. However, it’s still essential to check cited sources carefully because the URLs may be broken, and even when pages exist, they may not support the claims.
  • Tools handle tasks the model can’t do on its own, such as analyzing numeric data, running code, creating visualizations, or searching databases. For many types of requests, the AI will write a script or call a tool to handle the work, dramatically increasing the likelihood that the results will be correct and making it easier to refine them.
  • Connectors link AI systems to external platforms such as email, calendars, file storage, and Internet-hosted applications. They’re necessary so a system can work on personalized data (“Give me a timeline of the deliverables on the MacDavis project from our email conversations.”) and to connect with business data.
  • Actions let AI systems do things in the digital world: send messages, create events, modify files, and interact with other software. Here is where AI stops merely advising and starts affecting real systems, so the safeguards need to be much stronger.

These capabilities don’t always appear together. A simple chatbot exchange may rely only on the model’s training. A research request may add retrieval and tools so the AI can search current sources, summarize what it finds, and run calculations or create charts. A workplace copilot may add connectors to email, calendars, cloud storage, customer records, or internal databases. A full-fledged agent adds actions, enabling the system to operate on your behalf.

It’s important to understand all the possibilities because each layer changes both what the AI can do and how much you should trust it. A model-only answer calls for skepticism (and perhaps a search). A search-based answer needs source checking. A tool-generated answer requires checking the inputs, method, and results. A connector-based answer warrants attention to the source of the data (and whether the permissions are too broad). And an action deserves a preview, an approval process, and ideally a way to undo mistakes.

What This Means for Trust, Privacy, and Control

This evolution from chatbot to assistant generally yields better results, but it also comes with new risks:

  • Privacy isn’t just about what you type. It’s about what files you upload, what accounts you connect, and what the AI system can access. Putting confidential data into an AI could be problematic in numerous ways, not least regulatory compliance.
  • Accuracy varies by task. Responses drawn purely from training data may be outdated or flat-out wrong, while search-informed answers reflect current sources. Asking an AI to “Confirm with a search” is a good way to get it to reassess what it has written with current information.
  • Actions have consequences. When AI can send email, modify files, change settings, or interact with business systems, mistakes can have outsized impacts. This is why we strongly recommend caution about OpenClaw-style agents: giving any AI broad access to email, messaging, calendars, files, and applications creates security and reliability risks. Always preview any action—or AI-generated script you’re running externally—whose results could be difficult or impossible to reverse.
  • Confidence isn’t correctness. AI outputs can sound polished and authoritative even when they contain errors, outdated information, or subtle misunderstandings of your intent. Any AI-generated work that informs decisions or will be seen by others deserves human review. Just as you wouldn’t base anything important on the work of a summer intern without checking first, you don’t want AI-generated work to go out if you can’t stand behind it.

For individuals, how you react to these risks mostly comes down to verification and restraint: check important sources, review important outputs, and don’t let AI take irreversible actions without approval. For organizations, the same principles must become policy because employees may already be using AI tools with company data without IT’s knowledge. To get ahead of the issue, organizations should:

  • Audit what’s already happening. Talk with employees to find out what they’re already using, inventory online apps with embedded AI features, and check browser extensions, which often fly under the radar.
  • Classify workflows by risk. Not all workflows need the same level of attention. Low-stakes tasks like brainstorming and text editing can proceed with commonsense guidelines. High-stakes outputs—client communications, financial analysis, security configurations—need human review before they go live.
  • Evaluate tools carefully. Before approving any AI tool for general use, understand what data it accesses, whether it trains on your inputs, what actions it can take, and what logging is available. Most paid tools won’t train on your data, or can at least be configured not to, but the more important your data, the deeper your research should go.
  • Create clear policies and train employees. Define which tools are approved, what data can be entered into AI systems, when human review is required, and what’s prohibited. Employees need practical guidance on how to apply the policies to their actual workflows. Don’t assume that an email or two is sufficient—training is essential.

The biggest mistake people make about AI today is underestimating both its risks and rewards because they’re still thinking about ChatGPT from 2023. The chat box may look the same, but it now sits in front of systems that are vastly more powerful, meaning that it’s more important than ever to consider when to trust them, when to verify them, and when to keep them at arm’s length.


Control Center Is Improved-and Highly Customizable-in macOS 26 Tahoe

Control Center debuted on the iPhone over a decade ago in iOS 7 and made its way to the Mac in 2020 with macOS 11 Big Sur. However, through macOS 15 Sequoia, Mac users who wanted to tweak Control Center for their needs were limited to turning specific controls on or off. With macOS 26 Tahoe, Apple completely overhauled Control Center, enabling users to remove, rearrange, and add controls, including new ones from independent developers.

If you mostly ignore Control Center on your Mac, it’s worth another look in Tahoe. The big win of Control Center is that it provides quick access to numerous controls without occupying valuable space in the menu bar, a limitation that MacBook users regularly encounter. Now that you can personalize Control Center, it’s much more useful than before.

Before we explain how to customize Control Center, let’s look at the basics.

Open and Use Control Center

To open Control Center, click its icon pastedGraphic.png at the right side of the menu bar or use its Fn-C keyboard shortcut. It always appears in the top-right corner of the screen (below left). You may notice a colored dot next to the Control Center icon: orange means the microphone is in use, green tells you a camera is in use, purple indicates that system audio is being recorded, and an arrow means an app is using your location.

Some controls, like Dark Mode and Screenshot, are simple buttons that you click to toggle a setting or trigger an action. You’ll also see sliders, such as for Display Brightness and Sound Volume. Many controls, such as Display, open separate panels with additional controls (below right).

Customize Control Center

To begin customizing Control Center, don’t look in System Settings anymore—instead, click the Edit Controls button at the bottom of Control Center. That displays a ⊖ button on each control, adds eight empty single-button slots at the bottom, and opens the Control library.

Once here, you can:

  • Remove existing controls: Click a control’s ⊖ button to remove it from Control Center. You can always put it back later, although the lack of a label in Control Center can make it tricky to find in the Control library, because you may not know what you removed.
  • Resize controls: You can usually resize a control by Control-clicking it and choosing Small, Medium, or Large. Small controls occupy a single slot; medium controls occupy two side-by-side slots; and large controls occupy four slots, either as a 2-by-2 grid or a 4-by-1 line.
  • Rearrange the order: Drag controls in the grid to reorder them. You can move one only to a position where it’ll fit, so you may need to resize other controls to make space.
  • Add new controls: More on this below, but in short, you add new controls from the Control library window that appears to the left of Control Center when you click Edit Controls.

When you’re finished customizing Control Center in these ways, click Done at the bottom of the Control library.

Adding Controls to Control Center

Apple gives you two ways to add controls from the Control library:

  • Drag a control in the main pane to the desired Control Center spot.
  • Hover over the desired control, click the green ⊕ button that appears, and choose Add to Control Center. You can also choose Add to Menu Bar to put the control there for even quicker access.

To discover what controls are available, either scroll through the All Controls collection or select a particular category in the sidebar. You can also search for controls by name.

Nearly all the controls have been added to the library in advance by Apple, but there are two exceptions:

  • Third-party controls: Independent developers can create their own. For instance, Flexibits’ Cardhop provides controls for adding and searching for contacts.
  • Shortcuts: Apple’s automation app, Shortcuts, enables you to open any app from Control Center, run any shortcut, or show a collection of shortcuts. Anything you can create in Shortcuts can be triggered from Control Center. (Don’t be intimidated by Shortcuts; you can ask any AI chatbot to help you develop a shortcut.)

Don’t worry about messing up Control Center while you’re experimenting with different controls. You can always reset it in System Settings > Menu Bar by scrolling to the bottom and clicking Reset Control Center.

One final tip. A little control may appear at the top of Control Center at times. It’s a privacy notification that tells you whether an app has used your location recently (like Weather), used the camera (like FaceTime), recorded your screen (like Screenshot), or engaged in some other activity Apple thinks you might want to know about. Click it to learn a little more.


How to Share Sensitive Information Securely over the Internet

At some point, most of our communications shifted from analog to digital: letters and phone calls became emails, texts, and video calls. With analog methods, we could generally assume that our private communications would remain private. Few people were going to steam open a letter or wiretap a phone line. The Internet changed that—digital communications, if not properly protected, can be intercepted in bulk far more easily.

Not all everyday communications require strict privacy. Most of us prefer privacy, of course—few people want their dinner plans published for the world to see—but there are typically no consequences of exposure greater than mild embarrassment (McDonald’s again?). But even ordinary people regularly need to share information that could damage their relationships, finances, or careers if it fell into the wrong hands.

Passwords are the most obvious example because their entire point is secrecy. But other sensitive data includes credit card details, bank account numbers, tax documents, retirement planning materials, and health-related information. When you need to share such data, how do you do it securely?

Data at Rest and in Transit

Before exploring specific solutions, you need to think about how information is protected when it’s in transit between systems and when it’s stored somewhere:

In transit: To prevent eavesdropping, focus on communication channels that are encrypted between you and the destination:

  • Between your app and a server: Nearly all Internet-enabled apps, including all Web browsers, use SSL/TLS to protect their connections to servers. A lock icon in a Web browser’s address bar indicates HTTPS encryption, or you can look for https at the start of a website’s URL.
  • End-to-end encryption: Even better is end-to-end encryption, which ensures that not even the service provider can decrypt your traffic. iMessage (blue-bubble conversations), WhatsApp, and Signal provide end-to-end encryption protection (though WhatsApp archives are readable by other Meta apps). SMS messages are not encrypted at all, and RCS conversations only support encryption with the latest Apple and Google updates, plus carrier support. Both SMS and RCS appear as green-bubble conversations.

At rest: Stored data—whether on your computer, at remote email servers, or in the cloud—needs protection too. Two approaches help:

  • Per-file encryption: Encrypt data before sending so even if an attacker figures out how to access the file, it can’t be decrypted without a password. Send the password through a completely different communication channel (called “out-of-band”)—for example, share an encrypted file via email but send the password via Messages.
  • Time- or access-expiring links: Send a link to the information that expires after a short period or after a limited number of views, thereby shrinking the window during which a breach could occur.

Choosing the Right Solution

The best approach for any given communication depends on four factors:

  • Audience: What are your recipients’ technical capabilities? Messages is easy and secure, but only Apple users can access it. Email reaches everyone but offers less protection. A password-protected PDF is probably easier for less-technical users than an encrypted disk image.
  • Content type: Sharing a password differs from sharing a document, which in turn is different from sharing a collection of files.
  • Importance: How problematic would it be if the sensitive information you’re sharing fell into the wrong hands? There’s a world of difference between the password for a club discussion forum and the credentials to your retirement account.
  • Persistence: Does your recipient need to glance at something only once, or do they need to retain a copy permanently?

Eight Secure Sharing Methods

With all that in mind, here are eight secure methods of sharing information that you can employ in different situations:

  1. Use a secure portal when available: Doctors, lawyers, accountants, and other professionals who regularly receive sensitive information often use secure customer portals or services like DocuSign for sending messages, documents, and files. Use whatever system they provide unless you have good reason to doubt their IT competence.
  2. iMessage, Signal, or WhatsApp: For quick sharing of sensitive information, these end-to-end encrypted messaging services work well. They’re particularly useful for sending information that isn’t useful on its own—for instance, send a login URL and username via email but the password separately via Messages.
  3. Self-destructing links: Services like 1ty.me and One-Time Secret generate encrypted links that contain text. Once the recipient views the link, the server deletes the data, and the link self-destructs. If the recipient reports the link was already used, you know it was compromised. Be aware that some email systems automatically scan links, which could trigger premature self-destruction.
  4. Password manager sharing: 1Password, Bitwarden, and some other password managers (but not Apple’s Passwords) offer secure sharing features that make it easy to share credentials with someone who needs to access a particular account. You can create links with expiration dates, limit access to specific email addresses, and cause links to self-destruct after being viewed once.
  5. Password-protected PDF: For documents that could be printed, create a password-protected PDF. From nearly any app, choose File > Print, click the PDF menu at the bottom, and choose Save As PDF. In the Save dialog that appears, click Security Options, select “Require password to open document,” and enter a strong password (online services can remove weak passwords). Share the file however you like, but send the password through a different channel, preferably via an expiring link.
  6. Password-protected disk image: For Mac users sharing files that can’t easily become PDFs, or for sharing collections of files, create a password-protected disk image. In Disk Utility, create a new compressed disk image (File > New Image > Image from Folder), choose an encryption option (256-bit for more sensitive information), and enter a strong password. Again, share the password separately, ideally via an expiring link.
  7. Password-protected Zip archive: A password-protected Zip archive serves the same purpose and may be easier for Windows users to extract. Apps like Keka and BetterZip can create these. For the fastest approach, open Terminal, type zip -er ~/Desktop/filename.zip (with a space at the end), drag in the files you want to compress, press Return, and enter your desired password when prompted.
  8. Time-expiring cloud storage links: Some cloud storage services offer links that expire after a specified time. Dropbox Professional supports this feature, enabling you to share files while ensuring that links become useless in the event of a breach.

There’s no one-size-fits-all solution for securely sharing sensitive information. Match your approach to the sensitivity of the data, your recipient’s capabilities, and how long they need access.

Subscribe for Monthly Technology Insights from Cranston IT!

* indicates required
Get in touch with us today to learn more about our IT services!
See how we can help your business thrive!
Call us at 412-200-5656 or contact us online to schedule your consultation.
Let’s optimize your IT systems together!