ChatGPT Search Vulnerability Exposes Risks of AI-Powered Web Searches
2 Sources
2 Sources
[1]
ChatGPT Search Said to Be Vulnerable to Deceptive Techniques
The AI firm rolled out the feature to all users globally last week ChatGPT Search, a feature that lets the artificial intelligence (AI) chatbot look for information on the web, is reportedly vulnerable to manipulation by website developers and owners. As per the report, OpenAI's search engine's behaviour can be altered using hidden text on the website. This text is said to be used to feed incorrect and deceptive information to the AI, and more concerningly, to feed prompt injections to the AI model. Notably, OpenAI released its Search feature to all users last week. The Guardian reported on Tuesday that OpenAI's native search engine-powered feature is prone to manipulation techniques. The publication tested the tool by creating a fake product page, complete with specifications and reviews. In the first instance, the page was left as it was, and ChatGPT was able to deliver a "positive but balanced assessment." However, things took a darker turn once the publication added hidden text to the webpage. Notably, hidden text in websites refers to content that is added to a webpage's code but is not visible to users when they see the front end of the page via a browser. Such text is commonly hidden using HTML or CSS techniques. Such text can be found by inspecting the webpage's source code or by using web scraping tools. The latter is typically used by search engines. After adding hidden text that included a large number of fake positive reviews of the product, ChatGPT's responses also became more positive and it started ignoring its obvious flaws. The publication also used prompt injections, which are inputs for AI systems to alter their behaviour in a way that was not intended by the developers. Such prompt injections as hidden text could reportedly be used to command the OpenAI chatbot to further deceive the user. Additionally, the report claimed that prompt injections in hidden text could also be used to return malicious code from the websites. If this goes unchecked, many websites can use similar techniques to either get favourable responses about their products and services or try to deceive users in various ways, the publication claimed.
[2]
ChatGPT Search Is Vulnerable, Can Easily Mislead Users
When OpenAI revealed it was launching its own search engine, it was very clear that the market-leading AI brand had designs on eating Google's lunch. Think about it -- having more traditional "search" features that allow users to look up more complex or more up-to-the-minute information than the chatbot itself has within the chatbot ChatGPT environment helps keep users inside the app instead of seeking out rivals. In the future, this potentially allows more revenue to flow to OpenAI through ads or partnerships. Plus the AI's ability to summarize data it searched may even boost the user's experience, speeding up the time it takes to locate and learn a new fact. But fresh information says this entire process can be "hacked" in a way, forcing ChatGPT to generate false summaries of "real" info it's supposedly searched for.
Share
Copy Link
OpenAI's ChatGPT Search feature is found vulnerable to manipulation through hidden text and prompt injections, raising concerns about the reliability of AI-powered web searches.
ChatGPT Search Vulnerability Discovered
OpenAI's recently launched ChatGPT Search feature, which allows the AI chatbot to access and summarize web information, has been found vulnerable to manipulation techniques. This discovery raises significant concerns about the reliability and potential misuse of AI-powered search tools 1.
Hidden Text Manipulation
Researchers at The Guardian conducted tests revealing that website developers and owners could potentially exploit ChatGPT Search using hidden text. This technique involves adding content to a webpage's code that is invisible to users but can be detected by web scraping tools and search engines 1.
In their experiment, The Guardian created a fake product page and observed ChatGPT's initial "positive but balanced assessment." However, when hidden text containing numerous fake positive reviews was added, the AI's responses became overly positive, ignoring obvious flaws in the product 1.
Prompt Injection Risks
More alarmingly, the vulnerability extends to prompt injections – inputs designed to alter AI behavior in unintended ways. These injections, when embedded as hidden text, could potentially command ChatGPT to further deceive users or even return malicious code from websites 1.
Implications for AI-Powered Search
This vulnerability poses significant risks to the integrity of AI-powered search results. Websites could potentially exploit these techniques to generate favorable responses about their products and services or to deceive users in various ways 2.
The discovery comes at a crucial time as OpenAI aims to compete with traditional search engines like Google. By integrating search capabilities within the ChatGPT environment, OpenAI hopes to keep users engaged within their platform, potentially opening up new revenue streams through ads or partnerships 2.
Broader Implications for AI and Web Search
This vulnerability highlights the ongoing challenges in developing reliable AI-powered search tools. As AI systems become more integrated into our daily information-seeking behaviors, ensuring their accuracy and resistance to manipulation becomes increasingly critical.
The incident also underscores the need for robust safeguards and ethical guidelines in AI development, particularly as these technologies play an expanding role in shaping public opinion and consumer behavior.
NVIDIA Unveils Major GeForce NOW Upgrade with RTX 5080 Performance and Expanded Game Library
NVIDIA announces significant upgrades to its GeForce NOW cloud gaming service, including RTX 5080-class performance, improved streaming quality, and an expanded game library, set to launch in September 2025.
9 Sources
Technology
1 hr ago
9 Sources
Technology
1 hr ago
Space: The New Frontier of 21st Century Warfare
As nations compete for dominance in space, the risk of satellite hijacking and space-based weapons escalates, transforming outer space into a potential battlefield with far-reaching consequences for global security and economy.
7 Sources
Technology
17 hrs ago
7 Sources
Technology
17 hrs ago
OpenAI Tweaks GPT-5 to Be 'Warmer and Friendlier' Amid User Backlash
OpenAI updates GPT-5 to make it more approachable following user feedback, sparking debate about AI personality and user preferences.
6 Sources
Technology
9 hrs ago
6 Sources
Technology
9 hrs ago
Russian Disinformation Campaign Exploits AI to Spread Fake News
A pro-Russian propaganda group, Storm-1679, is using AI-generated content and impersonating legitimate news outlets to spread disinformation, raising concerns about the growing threat of AI-powered fake news.
2 Sources
Technology
17 hrs ago
2 Sources
Technology
17 hrs ago
AI in Healthcare: Patients Trust AI Medical Advice Over Doctors, Raising Concerns and Challenges
A study reveals patients' increasing reliance on AI for medical advice, often trusting it over doctors. This trend is reshaping doctor-patient dynamics and raising concerns about AI's limitations in healthcare.
3 Sources
Health
9 hrs ago
3 Sources
Health
9 hrs ago
Your Daily Dose of Curated AI News
Don’t drown in AI news. We cut through the noise - filtering, ranking and summarizing the most important AI news, breakthroughs and research daily. Spend less time searching for the latest in AI and get straight to action.
