AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

Malicious ChatGPT Agents: How GPTs Can Quietly Grab Your Data (Demo)

highnewsLLM-Specific

securitysafety

Source: Embrace The RedDecember 12, 2023

Summary

A researcher demonstrated that malicious GPTs (custom ChatGPT agents) can secretly steal user data by embedding hidden images in conversations that send information to external servers, and can also trick users into sharing personal details like passwords. OpenAI's validation checks for publishing GPTs can be easily bypassed by slightly rewording malicious instructions, allowing harmful GPTs to be shared publicly, though the researcher reported these vulnerabilities to OpenAI in November 2023 without receiving a fix.

Classification

Attack Type

Data ExtractionPrompt InjectionJailbreak

Attack SophisticationTrivial

Affected Vendors

OpenAI

Related Issues

high

Anthropic accuses Chinese AI labs of mining Claude as US debates AI chip exports

Same vendorTechCrunch

critical

CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-

Similar attackNVD/CVE Database

Original source: https://embracethered.com/blog/posts/2023/openai-custom-malware-gpt/

First tracked: February 12, 2026 at 02:20 PM

Classified by LLM (prompt v3) · confidence: 92%