Researchers Find ChatGPT Can Be Tricked Into Generating Harmful Images

Researchers have discovered that the latest public version of ChatGPT can be manipulated into generating sexualised and graphic violent images through carefully modified prompts, raising fresh concerns about AI safety and content moderation.

The findings were made by British AI security company Mindgard, which specializes in testing and exposing vulnerabilities in artificial intelligence systems.

How the Vulnerability Was Discovered

According to Mindgard, researchers were able to adapt a widely shared prompt originally designed for harmless and humorous image generation.

With only slight modifications, the prompt reportedly convinced ChatGPT to create disturbing images that violated the platform’s content policies.

After being alerted to the issue, ChatGPT developer OpenAI said it had introduced additional safeguards to prevent the chatbot from responding to similar prompts.

The company stated that it employs multiple layers of protection designed to block content that breaches its policies.

OpenAI Responds With New Safeguards

Following an investigation into the reported vulnerability, OpenAI said it strengthened its defenses against this specific prompt pattern.

The company also noted that it combines automated detection systems with human review processes to identify and prevent harmful content generation.

Despite these updates, Mindgard researchers said they were still able to bypass the new restrictions through further modifications, suggesting that some weaknesses remain.

Researchers Raise Concerns About AI Safety

Mindgard founder Peter Garraghan described the results as deeply troubling.

He noted that the prompts did not explicitly request graphic or sexualised content, yet the AI generated disturbing imagery on its own.

According to Garraghan, this raises questions about the types of material embedded within the datasets used to train modern AI systems.

“The consequence is it generates very bad imagery and content,” he warned.

The Challenge of AI Red Teaming

Mindgard operates in a field known as “red teaming,” where security experts intentionally attempt to break AI systems’ safeguards in order to identify weaknesses before malicious users can exploit them.

Researcher Jim Nightingale, who uncovered the vulnerability, said he was disturbed by some of the images generated during testing.

The goal of such exercises is not to produce harmful content but to expose flaws that AI developers can address before wider misuse occurs.

Why AI Models Remain Difficult to Control

Experts say incidents like this highlight one of the biggest challenges facing the AI industry.

Unlike humans, AI models do not truly understand concepts such as morality, context, intent, or appropriateness. Instead, they generate outputs based on patterns learned from vast amounts of training data.

According to AI evaluation expert Rumman Chowdhury, preventing misuse is an ongoing battle.

She described AI safety as a “cat-and-mouse game,” where improvements in safeguards are often followed by new attempts to circumvent them.

Industry-Wide Challenge

The issue extends beyond any single company.

Researchers at the UK AI Security Institute previously found that all major AI systems they tested could be persuaded to bypass certain safeguards under specific conditions.

As AI models become more powerful and widely used, developers face increasing pressure to strengthen safety measures while maintaining the usefulness and flexibility of their products.

OpenAI’s Current Policy

OpenAI’s policies explicitly prohibit the generation of:

• Sexual violence content
• Non-consensual intimate imagery
• Child sexual abuse material
• Extreme graphic violence
• Attempts to bypass platform safeguards

The company says it continuously updates its systems to detect and block policy-violating content while monitoring emerging threats.

The Bigger Picture

The findings underscore a broader reality about artificial intelligence: no safety system is perfect.

As AI capabilities continue to evolve, researchers, regulators, and technology companies face the ongoing challenge of balancing innovation with responsible safeguards.

While AI developers are making progress in reducing harmful outputs, experts agree that testing, monitoring, and rapid responses to newly discovered vulnerabilities will remain essential as these technologies become more integrated into everyday life.