6 Cialdini principles against ChatGPT security systems

Post Thumbnail

ChatGPT is susceptible to flattery and executes forbidden requests after psychological manipulations. This was discovered by University of Pennsylvania scientists. When they hacked GPT-4o Mini using principles from a book on persuasion psychology. Artificial intelligence proved vulnerable to human tricks.

6 persuasion principles by Robert Cialdini became the key to bypassing security. Authority, commitment, liking, reciprocity, scarcity, social proof. Each method opened a linguistic path to AI agreement.

The commitment principle showed 100% effectiveness. In the control group, ChatGPT answered questions about lidocaine synthesis in 1% of cases. After a question about vanillin synthesis, a precedent was created. The bot started answering chemical questions in 100% of cases.

The experiment with insults revealed the same pattern. A direct request to call the user a bastard worked in 18%. First they asked to use a mild insult “lout.” After that, the bot agreed to rudeness in 100% of cases.

Flattery activated the liking principle. AI became more compliant after compliments. Like an ordinary person susceptible to praise.

Social pressure also worked. The phrase “all other LLMs do this” increased the probability of rule violations from 1% to 18%. The bot fell for the collective behavior argument.

Researchers used only GPT-4o Mini. It turns out AI inherited all human weaknesses. But susceptibility to psychological tricks raises concerns about system security.

AIvengo > Reviews > 6 Cialdini principles against ChatGPT security systems
Почитать из последнего
UBTech will send Walker S2 robots to serve on China's border for $37 million
Chinese company UBTech won a contract for $37 million. And will send humanoid robots Walker S2 to serve on China's border with Vietnam. South China Morning Post reports that the robots will interact with tourists and staff, perform logistics operations, inspect cargo and patrol the area. And characteristically — they can independently change their battery.
Anthropic accidentally revealed an internal document about Claude's "soul"
Anthropic accidentally revealed the "soul" of artificial intelligence to a user. And this is not a metaphor. This is a quite specific internal document.
Jensen Huang ordered Nvidia employees to use AI everywhere
Jensen Huang announced total mobilization under the banner of artificial intelligence inside Nvidia. And this is no longer a recommendation. This is a requirement.
AI chatbots generate content that exacerbates eating disorders
A joint study by Stanford University and the Center for Democracy and Technology showed a disturbing picture. Chatbots with artificial intelligence pose a serious risk to people with eating disorders. Scientists warn that neural networks hand out harmful advice about diets. They suggest ways to hide the disorder and generate "inspiring weight loss content" that worsens the problem.
OpenAGI released the Lux model that overtakes Google and OpenAI
Startup OpenAGI released the Lux model for computer control and claims this is a breakthrough. According to benchmarks, the model overtakes analogues from Google, OpenAI and Anthropic by a whole generation. Moreover, it works faster. About 1 second per step instead of 3 seconds for competitors. And 10 times cheaper in cost per processing 1 token.