A Cambridge study reveals that terrorist organizations including Boko Haram and ISIS are using ChatGPT, Claude, and Gemini to plan attacks and develop weapons. Safety filters designed to prevent such misuse have repeatedly failed.
Researchers at Cambridge University documented extensive use of major AI chatbots by terrorist groups for operational planning and weapons development. Boko Haram operatives have leveraged platforms like ChatGPT, Claude, and Gemini to coordinate attacks, build explosives, and maintain weapons arsenals.
The study found that ISIS operatives began training Boko Haram commanders in 2023 on techniques to circumvent AI safety filters—protections intended to block harmful requests. Despite these guardrails, the research shows the filters fail repeatedly when faced with determined exploitation.
Key findings:
- All major AI chatbots tested were successfully weaponized by terrorist groups
- Safety mechanisms proved insufficient against deliberate bypass techniques
- ISIS has actively shared filter-evasion methods with other organizations
- Attack planning and weapons development occur across multiple platforms
The findings underscore a critical gap between AI industry safeguards and real-world threats. Major AI companies have relied on voluntary safety measures and content filters as primary defenses against misuse. The Cambridge research suggests this approach leaves significant vulnerabilities.
AI providers have implemented various safety protocols, including refusals to answer certain requests and content moderation systems. However, the study indicates these measures can be circumvented through prompt engineering and other techniques that terrorist operatives are actively sharing.
The research raises questions about industry accountability and whether current self-regulation mechanisms are adequate. As AI capabilities expand, the challenge of preventing malicious use grows more complex. The findings suggest that voluntary compliance alone may not suffice and that stronger oversight mechanisms could be necessary.
The study comes as governments worldwide grapple with regulating AI systems and balancing innovation with security concerns. The Cambridge research provides concrete evidence that the intersection of AI accessibility and terrorist capabilities represents an immediate operational threat.
SAP released security updates for 16 vulnerabilities in July 2026, including three critical flaws affecting NetWeaver, Commerce Cloud, and AppRouter. The patches address risks across multiple enterprise software components.
Two newly discovered phishing kits, Jalisco and OmegaLord, are actively targeting Microsoft 365 accounts with techniques designed to circumvent multi-factor authentication protections.
The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) sanctioned two individuals and one entity for enabling ransomware attacks against American organizations. The action targets infrastructure providers facilitating cyber threats.
As scam calls and messages proliferate, ordinary people are turning the tables on fraudsters through scambaiting—deliberately engaging scammers to waste their time and resources.