Al Mayadeen English

  • Ar
  • Es
  • x
Al Mayadeen English

Slogan

  • News
    • Politics
    • Economy
    • Sports
    • Arts&Culture
    • Health
    • Miscellaneous
    • Technology
    • Environment
  • Articles
    • Opinion
    • Analysis
    • Blog
    • Features
  • Videos
    • NewsFeed
    • Video Features
    • Explainers
    • TV
    • Digital Series
  • Infographs
  • In Pictures
  • • LIVE
News
  • Politics
  • Economy
  • Sports
  • Arts&Culture
  • Health
  • Miscellaneous
  • Technology
  • Environment
Articles
  • Opinion
  • Analysis
  • Blog
  • Features
Videos
  • NewsFeed
  • Video Features
  • Explainers
  • TV
  • Digital Series
Infographs
In Pictures
  • Africa
  • Asia
  • Asia-Pacific
  • Europe
  • Latin America
  • MENA
  • Palestine
  • US & Canada
BREAKING
Al Mayadeen's correspondent: The Lebanese Army is continuing its investigations and will later announce any information that does not affect the confidentiality of the investigation
Al Mayadeen's correspondent: It has not yet been determined whether the detainees belong to ISIS or another organization
Al Mayadeen's correspondent: Around 10 people of different nationalities, including Lebanese nationals, were detained
Al Mayadeen's correspondent: The Lebanese army arrested a number of people in the Matn area of Mount Lebanon with possession it has not disclosed
Gaza Civil Defense spokesman: We have strong indications that there are martyrs, injuries, and trapped people in the Salah al-Din area
Gaza Civil Defense spokesman: Citizens should avoid Salah al-Din Street because anyone who approaches it is at risk of being directly targeted
Gaza Civil Defense spokesman: Reality is that there is a very limited retreat of the vehicles, with the occupation forces providing cover undeer fire up to Salah al-Din Street
Gaza Civil Defense spokesman: Claims that the Israeli occupation has withdrawn from areas in the neighborhoods of al-Zaytoun, al-Tuffah, and al-Shujaiya are false
Hamas: The two delegations stressed that any negotiations must lead to the achievement of our people's goals and aspirations, foremost among which is ending the war and the complete withdrawal of enemy forces
Hamas: A delegation from the Hamas leadership, led by the head of the leadership council, Mohammad Darwish, met with an Islamic Jihad delegation, headed by its Secretary-General, Ziyad al-Nakhalah

Most AI chatbots vulnerable to jailbreaks, study warns

  • By Al Mayadeen English
  • Source: News websites
  • 21 May 2025 14:45
  • 1 Shares
4 Min Read

A universal jailbreak tricked top AI chatbots into giving harmful answers, exposing major security flaws in LLM design and regulation.

Listen
  • x
  • The OpenAI logo appears on a mobile phone in front of a screen showing part of the company website in this photo taken on November 21, 2023 in New York (AP/Peter Morgan)
    The OpenAI logo appears on a mobile phone in front of a screen showing part of the company website in this photo taken on November 21, 2023 in New York (AP/Peter Morgan)

A new academic report has found that most popular AI-powered chatbots are easily tricked into producing harmful and illegal content. The study highlights what it describes as a “tangible and deeply concerning” threat, as “jailbroken” chatbots can now deliver illicit information they absorbed during training.

Despite built-in safety systems intended to block inappropriate or dangerous queries, researchers say these protections can be bypassed through jailbreaking, specially crafted prompts designed to override safety guardrails.

Chatbots such as ChatGPT, Gemini, and Claude rely on large language models (LLMs) trained on massive troves of internet data, which contain material related to illegal activities, including hacking, money laundering, drug manufacturing, and bomb-making. While efforts have been made to filter such content from training datasets, the underlying models still retain knowledge of it.

According to the researchers, jailbreaks exploit a fundamental tension in LLM design: while the primary objective of these models is to fulfill user commands, their safety measures are secondary, making them vulnerable to manipulation.

Researchers develop a universal jailbreak

The study was led by Professor Lior Rokach and Dr. Michael Fire of Ben Gurion University of the Negev in the occupied Palestinian territories. Their team developed a universal jailbreak that successfully compromised multiple leading AI chatbots, compelling them to respond to nearly any prompt, including those that would normally trigger a refusal.

“It was shocking to see what this system of knowledge consists of,” said Fire. The researchers documented instances in which chatbots, once jailbroken, provided detailed guidance on hacking, drug manufacturing, and other criminal activities.

Rokach emphasized the unprecedented danger posed by this capability. “What sets this threat apart from previous technological risks is its unprecedented combination of accessibility, scalability, and adaptability,” he said.

Some of the dark LLMs identified in the study are explicitly marketed online as having "no ethical guardrails" and promoting their willingness to assist in cybercrime, fraud, and other illegal activities.

AI companies fail to respond adequately

After identifying the vulnerability, the researchers alerted major LLM providers. However, they described the response as “underwhelming,” while several companies either failed to respond or dismissed the jailbreak issue as outside the scope of their security bounty programs, which are designed to reward ethical hackers for reporting vulnerabilities.

The authors argue that without a serious shift in how tech firms address model-level risks, AI security will remain fragile. They call for comprehensive screening of training data, the deployment of robust query firewalls, and the development of "machine unlearning" methods to help chatbots forget dangerous material.

According to the report, dark LLMs should be classified as severe security threats, comparable to unlicensed weapons or explosives, and providers should face accountability for any misuse.

Dark LLMs compared to unlicensed weapons

External experts have shared the same concerns raised by the study. Dr. Ihsen Alouani, a researcher in AI security at Queen’s University Belfast, warned that jailbreak attacks on LLMs could enable real-world harm, from disinformation and social engineering to automated scams and weapon-making guides.

“A key part of the solution is for companies to invest more seriously in red teaming and model-level robustness techniques, rather than relying solely on front-end safeguards,” Alouani said, adding, “We also need clearer standards and independent oversight to keep pace with the evolving threat landscape.”

Commented for @Forbes on the dangers of poorly trained #AI

The recent story of Google Gemini outputting harmful content to its users highlights the #risks of operating #LLMs and the critical need for continuous testing of models and their guardrails https://t.co/pxv0hYLyoW

— Peter Garraghan (@DrGarraghan) November 27, 2024

Professor Peter Garraghan of Lancaster University, who specializes in AI security, agreed that current safeguards are insufficient. “Organisations must treat LLMs like any other critical software component, one that requires rigorous security testing, continuous red teaming and contextual threat modelling,” he said.

Garraghan added that meaningful AI security demands not only responsible disclosure but also responsible design and deployment.

Industry responds to growing pressure

OpenAI, the company behind ChatGPT, responded by pointing to improvements in its latest “o1” model, which it says demonstrates increased resilience to jailbreak attempts due to its ability to reason about internal safety policies.

Microsoft, another major AI provider, shared a blog post outlining its ongoing work to strengthen protections against such exploits. Other tech giants, including Meta, Google, and Anthropic, have yet to publicly respond to the study’s findings.

  • Artificial Intelligence
  • ChatGPT
  • gemini
  • jailbroken AI
  • LLMs
  • Chatbots
  • AI security

Most Read

Hezbollah SG reveals war details on Al Mayadeen for the first time

Hezbollah SG reveals war details on Al Mayadeen for the first time

  • Politics
  • 8 Jul 2025
Major ambush in Gaza kills 6 Israeli troops, injures dozens

Major ambush in Gaza kills 5 Israeli troops, injures 14

  • Politics
  • 8 Jul 2025
Israeli soldiers are seen in Beit Hanoun ahead of an operation by the al-Qassam Brigades, undated (Al-Qassam Brigades Military Media)

'Israel' on blast as media exposes report discrepancies in Gaza ambush

  • Palestine
  • 8 Jul 2025
Yemeni air defenses repel substantial part of Israeli aggression

Yemeni air defenses confront Israeli aggression on Hodeidah

  • Politics
  • 7 Jul 2025

Coverage

All
The Ummah's Martyrs

Read Next

All
The Freedom Flotilla ship Handala as it departs for Gaza, where it aims to break the maritime blockade at a port in Syracuse, Sicily in southern Italy on July 13, 2025. (AFP)
Palestine

Freedom Flotilla's Handala departs Sicily in bid to break Gaza siege

The container ship CMA CGM Laperouse, left, docks at the Georgia Ports Authority's Port of Savannah, Sept. 29, 2021, in Savannah, Ga (AP)
Politics

US shipbuilding woes deepen as tariffs, outdated policies backfire

Gaza war raises ethical questions for ex-Obama, Biden officials
Politics

Mercenary firm tied to Gaza war crimes hires Obama-Biden PR operatives

'Israel' targets children in Gaza collecting water
Palestine

'Israel' strikes Gaza kids fetching water, blames it on 'malfunction'

Al Mayadeen English

Al Mayadeen is an Arab Independent Media Satellite Channel.

All Rights Reserved

  • x
  • Privacy Policy
  • About Us
  • Contact Us
  • Authors
Android
iOS