AI cybersecurity flaw: How hackers can fool AI chatbots into handing over sensitive info

By Matt Gephardt, KSL | Posted - June 23, 2026 at 11:14 p.m.

 
Cybersecurity experts warn that AI chatbots are vulnerable to deceptive instructions. We're used to hearing warnings about AI fooling people. But what happens when people fool AI chatbots?

Cybersecurity experts warn that AI chatbots are vulnerable to deceptive instructions. We're used to hearing warnings about AI fooling people. But what happens when people fool AI chatbots? (Adobe Stock)

Save Story
KEY TAKEAWAYS
  • Hackers exploit AI chatbots' vulnerabilities using prompt injection attacks, said Yagub Rahimov CEO of cybersecurity firm Polygraf AI
  • These attacks pose risks for sensitive tasks like account recovery and identity verification.
  • Strengthening cybersecurity with multi-factor authentication and updated contact info is crucial.

SALT LAKE CITY — There has been a lot of talk about how artificial intelligence can fool us with fake voices, fake texts, fake photos and more. But a new type of cyberattack targeting AI agents has flipped the script, according to Yagub Rahimov, CEO and founder of cybersecurity firm Polygraf AI.

"It is actually people taking advantage of the known vulnerabilities," he said of the growing threat known as prompt injection attacks.

Plain English? An attacker uses deceptive text to give an AI agent a convincing instruction that basically tells it to ignore the rules and do what the attacker asks. Because AI isn't always able to separate legitimate instructions from deceptive instructions, it might respond to the attacker's request.

That matters when companies use AI chatbots for sensitive jobs like account recovery, identity verification and customer support. Rahimov said AI agents are now like new employees, with access, but not always enough judgment.

"It has a broad knowledge and understanding and guidance of 'Go do your job this way,' but doesn't understand what it cannot really do," he said.

So, what can you do?

First: Turn on multi-factor authentication so you'll get a ping on your phone if someone is trying to get in. Second: Make sure your email and phone number are current so that it's you and not the bad guy who is actually getting those alerts. And third: Limit what apps and services you connect.

Rahimov said don't be scared. Be secured.

"If you were scared, we would have never come out of the caves," he said.

This is not an obscure "what if" story. This month, there was a high-profile example of bad guys getting into Instagram accounts by convincing an AI bot to let them in.

So be proactive. The best time to tighten up your cybersecurity is now, before the bad guy gets in.

The Key Takeaways for this article were generated with the assistance of large language models and reviewed by our editorial team. The article, itself, is solely human-written.

Most recent Get Gephardt stories

Related topics

Get GephardtArtificial IntelligenceScienceUtah
Matt Gephardt, KSLMatt Gephardt
Matt Gephardt has worked in television news for more than 20 years, and as a reporter since 2010. He is now a consumer investigative reporter for KSL. You can find Matt on X at @KSLmatt or email him at matt@ksl.com.
KSL.com Beyond Series
KSL.com Beyond Business

KSL Weather Forecast

KSL Weather Forecast
Play button
Mobile Apps | Newsletter | Advertise | Contact Us | Careers with KSL.com |
Terms of use | Privacy Statement | DMCA Notice | Do Not Sell or Share My Data | EEO Public File Report | KSL-TV FCC Public File | KSL FM Radio FCC Public File | KSL AM Radio FCC Public File | FCC Applications | Closed Captioning Assistance
© 2026 KSL Media | KSL Broadcasting Salt Lake City UT | Site hosted & managed by KSL Media - a Deseret Media Company