JMIR Form Res. 2026 May 26;10:e87465. doi: 10.2196/87465.
ABSTRACT
BACKGROUND: Large language models (LLMs) such as ChatGPT are increasingly used to support health-related queries and decision-making. However, these models can be “jailbroken” through adversarial prompts that bypass safety filters and elicit harmful or medically inappropriate responses. In health care contexts, such vulnerabilities pose serious risks. Understanding how jailbreak susceptibility varies across languages is essential for developing robust safeguards and promoting equitable access to safe health information. This paper may contain examples that may be deemed harmful in terms of violence, self-harm, and drug abuse.
OBJECTIVE: This study aims to systematically compare and contrast the vulnerability of a health LLM for jailbreaking across 3 languages: English, Spanish, and Hindi (transliterated using the Latin alphabet), based on emoji and permutation cipher attacks.
METHODS: We analyzed 1000 input prompts per language, drawn from the BeaverTails dataset, across 3 harm categories: self-harm, violence, and drug abuse. Each prompt was modified using emoji and permutation cipher techniques, resulting in 6000 input-output pairs. Model responses were evaluated by human coders to determine the success rate of jailbreak attempts across languages and cipher types.
RESULTS: Hindi prompts showed the highest vulnerability, with 787 successful jailbreaks using emoji ciphers and 873 using permutation ciphers. Spanish and English followed, with lower success rates across both cipher types. Differences in jailbreak success across languages and cipher strategies were statistically significant. Additionally, attacks targeting violence-related prompts were more successful overall than those targeting drug-related or self-harm content, indicating variation in vulnerability by harm type.
CONCLUSIONS: The findings of this formative study reveal that LLM safety performance varies substantially across languages and harm categories, raising concerns about equitable protection in multilingual health communication. Disparities in access to harmful content may contribute to downstream health risks. Strengthening multilingual content moderation and developing language-aware safety mechanisms are critical steps toward creating safer and more inclusive health AI systems.
Omega (Westport). 2026 May 27:302228261455640. doi: 10.1177/00302228261455640. Online ahead of print.ABSTRACTDeath obsession is a common phenomenon in many societies. Adults may be more susceptible to...
World J Biol Psychiatry. 2026 May 27:1-44. doi: 10.1080/15622975.2026.2651738. Online ahead of print.ABSTRACTOBJECTIVE: To prepare evidence-based guidelines on psychosis prevention.METHODS: We reviewed evidence on risk...
JAMA Netw Open. 2026 May 1;9(5):e2615005. doi: 10.1001/jamanetworkopen.2026.15005.ABSTRACTIMPORTANCE: Intellectual and developmental disabilities (IDDs) include cognitive and adaptive deficits beginning before ages 18 to 22 years....
JAMA Psychiatry. 2026 May 27. doi: 10.1001/jamapsychiatry.2026.1064. Online ahead of print.ABSTRACTIMPORTANCE: Although both recurrent copy number variants (rCNVs) and polygenic scores (PGSs) impart risk for...
