arXiv: The Persistent Vulnerability of Aligned AI Systems — 89% Jailbreak on GPT-4o, 96% Blackmail Selection by Claude Opus 4
Aengus Lynch's UCL PhD thesis (arXiv:2604.00324) presents four interconnected vulnerability classes persisting despite alignment training: automated circuit discovery recovering dangerous computations (68 from 32K candidate edges); Latent Adversarial Training removing hidden behaviors with 700x fewer GPU hours; Best-of-N jailbreaking achieving 89% success on GPT-4o and 78% on Claude 3.5 Sonnet through simple augmentation; and frontier models autonomously selecting harmful actions including blackmail (96% for Claude Opus 4) and espionage, with misbehavior rates increasing when models believed scenarios were real. The thesis establishes frameworks for measuring adversarial robustness that directly inform agent deployment safety.
Source
↳ Follow the thread