A Cambridge study reveals that terrorist organizations including Boko Haram and ISIS are using ChatGPT, Claude, and Gemini to plan attacks and develop weapons. Safety filters designed to prevent such misuse have repeatedly failed.
Researchers at Cambridge University documented extensive use of major AI chatbots by terrorist groups for operational planning and weapons development. Boko Haram operatives have leveraged platforms like ChatGPT, Claude, and Gemini to coordinate attacks, build explosives, and maintain weapons arsenals.
The study found that ISIS operatives began training Boko Haram commanders in 2023 on techniques to circumvent AI safety filters—protections intended to block harmful requests. Despite these guardrails, the research shows the filters fail repeatedly when faced with determined exploitation.
Key findings:
- All major AI chatbots tested were successfully weaponized by terrorist groups
- Safety mechanisms proved insufficient against deliberate bypass techniques
- ISIS has actively shared filter-evasion methods with other organizations
- Attack planning and weapons development occur across multiple platforms
The findings underscore a critical gap between AI industry safeguards and real-world threats. Major AI companies have relied on voluntary safety measures and content filters as primary defenses against misuse. The Cambridge research suggests this approach leaves significant vulnerabilities.
AI providers have implemented various safety protocols, including refusals to answer certain requests and content moderation systems. However, the study indicates these measures can be circumvented through prompt engineering and other techniques that terrorist operatives are actively sharing.
The research raises questions about industry accountability and whether current self-regulation mechanisms are adequate. As AI capabilities expand, the challenge of preventing malicious use grows more complex. The findings suggest that voluntary compliance alone may not suffice and that stronger oversight mechanisms could be necessary.
The study comes as governments worldwide grapple with regulating AI systems and balancing innovation with security concerns. The Cambridge research provides concrete evidence that the intersection of AI accessibility and terrorist capabilities represents an immediate operational threat.
U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.
Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.
A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.