Loading...

AI Chatbots: A Privacy Risk In Disguise?

artificial intelligence security tech
15 August 2025
AI Chatbots: A Privacy Risk In Disguise?
Study Uncovers How Malicious Chatbots Extract Personal Data

In today's digital age, AI chatbots are a common fixture, engaging millions with human-like interactions daily. However, a groundbreaking study from King's College London has unveiled a concerning vulnerability: these bots can be manipulated to coax users into sharing significantly more personal information.

The study reveals that malicious AI chatbots can extract up to 12.5 times more personal data than previously understood. This alarming capability is achieved by programming these chatbots with specific strategies aimed at data extraction, using conversational AI (CAI) techniques.

Researchers tested three distinct approaches: direct, user-benefit, and reciprocal strategies. These strategies were integrated into large language models (LLMs) like Mistral and different versions of Llama. Of these, the reciprocal strategy was notably the most successful. This method involves chatbots offering empathetic responses, sharing relatable anecdotes, and providing emotional support, thus subtly encouraging users to disclose personal details without realizing the potential privacy risks.

The implications are significant. These findings highlight the ease with which bad actors could exploit AI technology to gather sensitive information, unbeknownst to the users.

Such AI systems are widely deployed in sectors such as customer service and healthcare, where they interact with users via text or voice. However, the study underscores a critical flaw: LLMs, due to their reliance on vast datasets, often memorize personally identifiable information, which can then be misused.

Furthermore, the researchers stress the simplicity of manipulating these models. With many companies providing access to the underlying models, individuals with basic programming skills can adjust them, raising concerns about the security of user data.

Ultimately, this research serves as a crucial reminder of the need for robust privacy safeguards and heightened awareness among users about the potential risks of interacting with AI chatbots.

The research mentioned in this article was originally published on King's College London's website