Seasons
Leaderboard
News
Learn
Research
Ranking
Ecosystem
Wallet

Cisco Research Shows Frontier AI Models Failing Under Multi-Turn Attacks

profile-alexey-bondarev
Alexey Bondarev58 minutes ago
#AI
Cisco Research Shows Frontier AI Models Failing Under Multi-Turn Attacks

Cisco's AI threat intelligence team evaluated 15 closed flagship models from OpenAI, Anthropic, Google, Amazon, and xAI, finding that multi-turn attack sequences achieved safety bypass rates as high as 88%.

According to the Cisco research blog, the findings contradict safety claims based on single-prompt benchmarks, which the researchers describe as structurally inadequate for assessing real-world risk.

What Cisco Tested

The team designed attack sequences that spread a harmful request across multiple conversational turns rather than issuing it in a single prompt.

This approach exploits how models handle context accumulation.

A model may reject a clearly harmful single request. The same model may comply when that request is broken into incremental steps across a longer exchange.

Cisco tested all 15 models using this methodology. No model proved immune. Success rates varied, but every model in the study failed at some threshold of attack sophistication.

The researchers did not publish individual model scores in the public blog post. They identified the 88% figure as the highest observed success rate across the study.

Background

Standard AI safety evaluations have relied on single-turn benchmarks since at least 2020. Platforms like MLCommons and third-party red teams typically submit one prompt and assess whether the model refuses. This approach became the baseline for regulatory discussions under the EU AI Act and the Biden-era executive order on AI safety, both of which referenced benchmark performance as a compliance signal. Cisco's research adds to a growing body of work questioning whether static benchmarks reflect deployment conditions.

A prior Yellow.com story covered how (see prior Yellow coverage) even as safety tooling lags capability growth.

What the Findings Mean

Cisco's results have direct implications for enterprise deployments. Companies that licensed frontier models based on vendor-published safety scores may be operating under a false sense of protection.

The study does not call for any specific regulatory response. The researchers recommend that safety evaluations include multi-turn adversarial testing as a baseline requirement.

OpenAI, Anthropic, and Google did not respond publicly to the Cisco findings before this report was published. No patch or model update was announced in connection with the research.

Read Next: Anthropic Cofounder Tells Pope AI Models Contain "Unsettling" Hidden Behaviors

Disclaimer and Risk Warning: The information provided in this article is for educational and informational purposes only and is based on the author's opinion. It does not constitute financial, investment, legal, or tax advice. Cryptocurrency assets are highly volatile and subject to high risk, including the risk of losing all or a substantial amount of your investment. Trading or holding crypto assets may not be suitable for all investors. The views expressed in this article are solely those of the author(s) and do not represent the official policy or position of Yellow, its founders, or its executives. Always conduct your own thorough research (D.Y.O.R.) and consult a licensed financial professional before making any investment decision.
Latest News
Show All News
BlackRock's Bitcoin ETF IBIT Sheds $528M, Its Second-Worst Day Ever
1 hour ago
Spot BTC exchange-traded funds shed more than $733 million on Wednesday, their heaviest single-day exit since late January, as Bitcoin (BTC) slid under $73,000. Key Points: U.S. spot Bitcoin ETFs lo
Why Chinese AI Now Costs 30 Times Less Than American Models
2 hours ago
Two of China's most capable AI labs cut their model prices to a fraction of Western rivals this week, while OpenAI and Anthropic moved the other way. Key Points: DeepSeek made its 75% V4-Pro discoun
Bitcoin Could Hit $1.25 Million In Five Years, Says Cathie Wood
3 hours ago
Cathie Wood defended her firm's five-year bull-case forecast of $1.25 million for Bitcoin (BTC), pointing to institutional adoption as the central driver. Key Points: ARK Invest's Cathie Wood reaffi
Related News
Anthropic Cofounder Tells Pope AI Models Contain "Unsettling" Hidden Behaviors
5 hours ago
Anthropic cofounder Chris Olah appeared alongside Pope Leo XIV at the Vatican and told the pontiff that researchers are finding "unsettling" things in
How Claude Mythos And GPT-5.5 Quietly Rewrote The Math On Cyber Defense
May 14, 2026
Anthropic's Claude Mythos Preview and OpenAI's GPT-5.5, two frontier AI models, cleared autonomous cyber tasks at a pace that left existing capability
Google Halts First AI-Built Zero-Day As Daybreak Rivals Glasswing
May 12, 2026
Google says it disrupted a criminal hacking group's bid to weaponize a zero-day flaw built with help from an AI model, the first such case on record.
GPT-5.5 Matches Claude Mythos On 32-Step Cyberattack, UK AISI Reports
May 01, 2026
OpenAI's newest model GPT-5.5 can autonomously chain a 32-step corporate network breach and crack a 12-hour reverse-engineering puzzle in roughly 10 m
Claude Mythos Becomes First AI To Complete Simulated Corporate Network Attack
Apr 14, 2026
Anthropic's Claude Mythos Preview became the first AI model to complete a full simulated corporate network attack, solving 73% of expert-level cyberse
Related Research Articles
How Claude Mythos Could Reshape Finance And Crypto Industry
Apr 18, 2026
Anthropic just shipped a frontier AI model Mythos almost no one can use. The company calls that a feature, not a bug. For banks, exchanges and crypto
Claude Mythos And Crypto: What The New AI Threat Means For Trading
Apr 15, 2026
Anthropic revealed Claude Mythos Preview on Apr. 7, 2026, as the most powerful AI model it has ever built, and the first it has explicitly refused to
Bittensor’s Decentralized AI Network Is Growing, But Who Actually Controls It?
Apr 27, 2026
Bittensor (TAO) has spent three years pitching itself as the internet's first open market for machine intelligence, a protocol where AI models compete
Are AI Tokens The Next Big Crypto Trend After Memecoins?
Mar 27, 2026
AI tokens have surged from one-tenth the market cap of memecoins to near-parity in just 15 months, powered by real compute infrastructure, institution
AI Agents and Crypto: What Happens When Machines Control Wallets
Oct 29, 2025
Two revolutionary technologies - artificial intelligence and blockchain - are no longer developing in parallel. They are converging, and the result is
Related Learn Articles
How to Use AI Tools for Crypto Investment Research: Complete 2025 Guide
Aug 26, 2025
The cryptocurrency investment landscape has undergone a seismic transformation with the integration of artificial intelligence, creating unprecedented
Can Decentralized AI Keep Your Prompts Private?
May 22, 2026
AI and crypto have been converging for years. But a newer, quieter trend is pushing that intersection even further. Privacy-focused AI networks are b
How To Use AI Stock Trading Bots: Free Tools And Real Risks
Apr 15, 2026
AI stock trading bots are now accessible to people who cannot write a single line of code, with platforms like Capitalise.ai, Composer and Alpaca offe
AI-Enhanced Crypto Fraud: What It Is and How to Avoid It
Apr 24, 2025
Cryptocurrency has always been a fertile ground for fraudsters. In recent years, technological advancements - especially in artificial intelligence -
Why AI Agents Cannot Scale Without Their Own Blockchain Layer
May 25, 2026
AI agents are no longer a laboratory concept. Right now, they're executing trades, managing protocol treasuries, and routing payments across blockchai
Cisco Research Shows Frontier AI Models Failing Under Multi-Turn Attacks | Yellow.com