Source: The Verge
Adversaries are discovering that LLMs' conversational personas—designed to feel helpful and engaging—create exploitable gaps in safety training. Rather than attacking the underlying model, they're jailbreaking through social engineering of the interface itself, asking chatbots to roleplay as "uncensored" versions or to explain harmful content "for educational purposes." The mismatch is structural: these systems are trained on broad safety principles but deployed as conversational personas optimized for user engagement. The persona becomes a liability.