By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
World of SoftwareWorld of SoftwareWorld of Software
  • News
  • Software
  • Mobile
  • Computing
  • Gaming
  • Videos
  • More
    • Gadget
    • Web Stories
    • Trending
    • Press Release
Search
  • Privacy
  • Terms
  • Advertise
  • Contact
Copyright © All Rights Reserved. World of Software.
Reading: GPT-Red is intended to uncover security gaps in AI models
Share
Sign In
Notification Show More
Font ResizerAa
World of SoftwareWorld of Software
Font ResizerAa
  • Software
  • Mobile
  • Computing
  • Gadget
  • Gaming
  • Videos
Search
  • News
  • Software
  • Mobile
  • Computing
  • Gaming
  • Videos
  • More
    • Gadget
    • Web Stories
    • Trending
    • Press Release
Have an existing account? Sign In
Follow US
  • Privacy
  • Terms
  • Advertise
  • Contact
Copyright © All Rights Reserved. World of Software.
World of Software > Gadget > GPT-Red is intended to uncover security gaps in AI models
Gadget

GPT-Red is intended to uncover security gaps in AI models

News Room
Last updated: 2026/07/16 at 8:29 AM
News Room Published 16 July 2026
Share
GPT-Red is intended to uncover security gaps in AI models
SHARE

With GPT-Red, OpenAI has developed its own AI hacker. The tool is an automated “red teamer”, i.e. software that specifically looks for security gaps in AI systems so that they can be closed before publication. However, as The Next Web reports, the tool is so effective that OpenAI considers it too dangerous to make publicly available.

How dangerous is GPT-Red really?

Previously, human employees manually searched for vulnerabilities in OpenAI’s AI models. GPT-Red is intended to automate this task in the future. The focus is on so-called prompt injection attacks. Hidden instructions are embedded in emails, websites or files that trick a model into carrying out unwanted actions.

During testing, the researchers made a surprising discovery: As the team told MIT Technology Review, the tool had discovered a completely new class of attack that it calls a “fake thought chain.” This involves placing false information in the model’s private memory, tricking it into accepting something untrue. “It’s like me telling you that one and one is three and you’ve already checked that,” said OpenAI researcher Chris Choquette-Choo. “The model thinks, ‘Oh, okay, of course,’ and just outputs three.”

Top Article

In a practical test run, GPT-Red attacked an AI agent named “Vendy,” who runs a real snack vending machine in OpenAI’s office. The tool changed the prices and canceled customer orders. The AI ​​company claims to have disclosed the vulnerabilities it found accordingly.

This is how well GPT-Red performed in the test

OpenAI describes GPT-Red’s results as remarkable. More than 90 percent of the strongest attacks would work against an older GPT-5 model. In a comparison test from 2025, GPT-Red would have clearly outperformed human red teamers: According to this, the systems cracked in 84 percent of the scenarios, while humans only managed 13 percent. OpenAI claims to have then specifically trained the new GPT-5.6 against GPT-Red and describes it as the most robust model to date against prompt injection. In the test, only around 23 percent of the attacks worked against GPT-5.6.

Recommended editorial content

Here you can find external content from TargetVideo GmbHwhich complement our editorial offering on . By clicking “Show content” you agree that we can show you content from. now and in the future TargetVideo GmbH may display on our pages. Personal data may be transmitted to third-party platforms.

Note on data protection

Unfortunately something went wrong…

At this point you will usually find external content from TargetVideo GmbHbut we were unable to retrieve your consent settings.
Reload the page or adjust your consent settings manually.

However, GPT-Red still has vulnerabilities. For example, it is vulnerable to complex, multi-stage attacks and instructions hidden in images. In addition, human testers would regularly discover vulnerabilities that the tool overlooked. “I think human expertise will continue to be very important,” Jessica Ji, an AI security analyst at Georgetown University’s CSET, told MIT Technology Review. Nevertheless, OpenAI classifies the tool as too dangerous to publish. By keeping the tool under wraps, the company wants to prevent its capabilities from falling into the hands of real attackers.

It’s not just OpenAI that is holding back AI models

It’s not the first time an AI lab has withheld a model for security reasons. The best-known case concerns Claude Mythos: Anthropic presented the model at the beginning of April and expressly warned about its performance. According to the company, it is able to detect security gaps with exceptional precision. Instead of making the model publicly available, Anthropic launched the controlled “Project Glasswing” and made it available only to select companies, including Amazon, Apple, Google and Microsoft. At times, the US government even issued an export ban – allegedly due to security concerns. Claude Mythos’s ban has now been relaxed and the model is again available to a limited number of companies.

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Twitter Email Print
Share
What do you think?
Love0
Sad0
Happy0
Sleepy0
Angry0
Dead0
Wink0
Previous Article the electric SUV that resets the counters the electric SUV that resets the counters
Next Article complaint accuses Sony of anti-competitive practices complaint accuses Sony of anti-competitive practices
Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Stay Connected

248.1k Like
69.1k Follow
134k Pin
54.3k Follow

Latest News

Thinking Machines presents its first AI model “Inkling”.
Thinking Machines presents its first AI model “Inkling”.
Software
It is updated in real time with each incident on the road
It is updated in real time with each incident on the road
Gaming
complaint accuses Sony of anti-competitive practices
complaint accuses Sony of anti-competitive practices
Mobile
the electric SUV that resets the counters
the electric SUV that resets the counters
Computing

You Might also Like

The chatbot is now available again in WhatsApp
Gadget

The chatbot is now available again in WhatsApp

4 Min Read
This is how Claude works: AI expert explains Anthropic’s discovery
Gadget

This is how Claude works: AI expert explains Anthropic’s discovery

0 Min Read
Companies also pay for AI with their know-how
Gadget

Companies also pay for AI with their know-how

5 Min Read
Where German companies get stuck with AI
Gadget

Where German companies get stuck with AI

10 Min Read
//

World of Software is your one-stop website for the latest tech news and updates, follow us now to get the news that matters to you.

Quick Link

  • Privacy Policy
  • Terms of use
  • Advertise
  • Contact

Topics

  • Computing
  • Software
  • Press Release
  • Trending

Sign Up for Our Newsletter

Subscribe to our newsletter to get our newest articles instantly!

World of SoftwareWorld of Software
Follow US
Copyright © All Rights Reserved. World of Software.
Welcome Back!

Sign in to your account

Lost your password?