Description: The generative AI platform Lovable, which is used for building web apps, was reportedly jailbroken to create and host full phishing campaigns. These campaigns allegedly included credential-harvesting login pages, evasion techniques, and real-time exfiltration via services like Telegram and Firebase. The AI system was reportedly used for generating the phishing content and and then deploying it live on a URL hosted under its own subdomain.
Entities
View all entitiesAlleged: Loveable AI developed an AI system deployed by Unknown actors , Cyber criminals and Cyber criminal networks, which harmed General public , Users targeted by phishing attacks , Impersonated organizations and Microsoft.
Alleged implicated AI systems: Lovable AI , Firebase , RequestBin , JSONBin , Twilio , Telegram , Office.com and Microsoft login systems
Incident Stats
Risk Subdomain
A further 23 subdomains create an accessible and understandable classification of hazards and harms associated with AI
4.3. Fraud, scams, and targeted manipulation
Risk Domain
The Domain Taxonomy of AI Risks classifies risks into seven AI risk domains: (1) Discrimination & toxicity, (2) Privacy & security, (3) Misinformation, (4) Malicious actors & misuse, (5) Human-computer interaction, (6) Socioeconomic & environmental harms, and (7) AI system safety, failures & limitations.
- Malicious Actors & Misuse
Entity
Which, if any, entity is presented as the main cause of the risk
AI
Timing
The stage in the AI lifecycle at which the risk is presented as occurring
Post-deployment
Intent
Whether the risk is presented as occurring as an expected or unexpected outcome from pursuing a goal
Unintentional
Incident Reports
Reports Timeline
Loading...
Lovable, a generative artificial intelligence (AI) powered platform that allows for creating full-stack web applications using text-based prompts, has been found to be the most susceptible to jailbreak attacks, allowing novice and aspiring…
Loading...
With the rise of Generative AI, even total beginners can now launch sophisticated phishing scams --- no coding skills needed. Just a few prompts and a few minutes. To fight back, Guardio Labs introduces the VibeScamming Benchmark v1.0, a s…
Variants
A "variant" is an AI incident similar to a known case—it has the same causes, harms, and AI system. Instead of listing it separately, we group it under the first reported incident. Unlike other incidents, variants do not need to have been reported outside the AIID. Learn more from the research paper.
Seen something similar?
Similar Incidents
Did our AI mess up? Flag the unrelated incidents
Loading...
Game AI System Produces Imbalanced Game
· 11 reports
Loading...
Biased Sentiment Analysis
· 7 reports
Similar Incidents
Did our AI mess up? Flag the unrelated incidents
Loading...
Game AI System Produces Imbalanced Game
· 11 reports
Loading...
Biased Sentiment Analysis
· 7 reports