{"id":256804,"date":"2026-05-27T09:00:00","date_gmt":"2026-05-27T13:00:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/27\/all-major-llms-exposed-to-multi-turn-manipulation-warn-researchers\/"},"modified":"2026-05-27T09:25:10","modified_gmt":"2026-05-27T13:25:10","slug":"all-major-llms-exposed-to-multi-turn-manipulation-warn-researchers","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/27\/all-major-llms-exposed-to-multi-turn-manipulation-warn-researchers\/","title":{"rendered":"All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/all-major-llms-exposed-to-multi\/\">All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/all-major-llms-exposed-to-multi\/\">https:\/\/www.infosecurity-magazine.com\/news\/all-major-llms-exposed-to-multi\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-27 09:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p>The safety guardrails of several prominent large language models (LLM) can be bypassed if a user tricks the LLM into having a multi-pronged, ongoing conversation, researchers at Cisco have warned.<\/p>\n<p>The researchers examined commonly used LLMs and frontier AI models including OpenAI\u2019s ChatGPT, Anthropic\u2019s Claude, Google Gemini, Amazon Nova, xAI\u2019s Grok and others to test how their built-in safety guardrails held up against potential threats from real-world attackers.<\/p>\n<p>They found that many of the models could be tricked into performing actions they should not be able to.<\/p>\n<p>This was achieved by deploying multi-turn conversations: dialogue between the user and the LLM which spans multiple back and forth exchanges.<\/p>\n<p>While guardrails in LLMs are designed to prevent users from entering malicious commands, the researchers found that by engaging the LLMs in conversations and querying the responses the protections faltered.<\/p>\n<p>\u201cMulti-turn evaluation matters for one reason: it is where attackers actually live. Real adversaries iterate. They reframe refusals, decompose tasks across turns, adopt personas, and escalate gradually,\u201d said Cisco.<\/p>\n<h2><strong>No Guardrails Completely Safe From Bypass<\/strong><\/h2>\n<p>The research found that no model was completely safe from being exploited by multi-turn-based manipulation of guardrails. Cisco warned that this challenges how enterprises are currently evaluating AI safety and security.<\/p>\n<p>The warning comes at a time when many organizations are rolling out AI and LLMs for use by employees, clients and customers, but are relying on safety benchmarks that misrepresent real-world risk.<\/p>\n<p>Read more: What Fronter AI Models Like Mythos and GPT-Cyber Mean for Modern Cybersecurity<\/p>\n<p>The report warned that most safety around LLMs is based on single-prompt testing, but attackers don&#8217;t stop after one try \u2013 and all models were affected by multi-turn attack success rates (ASR).<\/p>\n<p>Techniques which enabled researchers to bypass guardrails though multi-turn conversations&#8230;<\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/all-major-llms-exposed-to-multi\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>All Major LLMs Exposed to Multi-Turn Manipulation, Warn Researchers https:\/\/www.infosecurity-magazine.com\/news\/all-major-llms-exposed-to-multi\/ Publish Date: 2026-05-27 09:00:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":256805,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/7053fb1d-2250-40a1-b801-07709ba46f7e.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,24,17],"class_list":["post-256804","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-cybersecurity","tag-llm"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/256804"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=256804"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/256804\/revisions"}],"predecessor-version":[{"id":256806,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/256804\/revisions\/256806"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/256805"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=256804"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=256804"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=256804"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}