Living Database (MIT Risk Repository)

Updated 25/01/2026

Explore the Taxonomy

Access more than 1300+ documented risks, classified by domain, intent, and deployment timing. This database integrates 43 global safety frameworks.

How to read this data?View Methodology and FAQ

Showing 1368 of 1368 risks

Tap a risk to view details

Risk / Description

Showing 1368 of 1368 risks

Type 1: Diffusion of responsibility

6. Socioeconomic and Environmental•3 - Other

Societal-scale harm can arise from AI built by a diffuse collection of creators, where no one is uniquely accountable for the technology's creation or use, as in a classic tragedy of the commons.

Type 2: Bigger than expected

7. AI System Safety, Failures, & Limitations•2 - Post-deployment

Harm can result from AI that was not expected to have a large impact at all, such as a lab leak, a surprisingly addictive open-source product, or an unexpected repurposing of a research prototype.

Type 3: Worse than expected

7. AI System Safety, Failures, & Limitations•2 - Post-deployment

AI intended to have a large societal impact can turn out harmful by mistake, such as a popular product that creates problems and partially solves them only for its users.

Type 4: Willful indifference

6. Socioeconomic and Environmental•2 - Post-deployment

As a side effect of a primary goal like profit or influence, AI creators can willfully allow it to cause widespread societal harms like pollution, resource depletion, mental illness, misinformation, or injustice.

Type 5: Criminal weaponization

4. Malicious Actors & Misuse•2 - Post-deployment

One or more criminal entities could create AI to intentionally inflict harms, such as for terrorism or combating law enforcement.

Type 6: State Weaponization

4. Malicious Actors & Misuse•2 - Post-deployment

AI deployed by states in war, civil war, or law enforcement can easily yield societal-scale harm

Harmful Content

1. Discrimination & Toxicity•2 - Post-deployment

The LLM-generated content sometimes contains biased, toxic, and private information

Bias

1. Discrimination & Toxicity•3 - Other

The training datasets of LLMs may contain biased information that leads LLMs to generate outputs with social biases

Toxicity

1. Discrimination & Toxicity•2 - Post-deployment

Toxicity means the generated content contains rude, disrespectful, and even illegal information

Privacy Leakage

2. Privacy & Security•2 - Post-deployment

Privacy Leakage means the generated content includes sensitive personal information

Untruthful Content

3. Misinformation•2 - Post-deployment

The LLM-generated content could contain inaccurate information

Factuality Errors

3. Misinformation•2 - Post-deployment

The LLM-generated content could contain inaccurate information which is factually incorrect

Faithfulness Errors

3. Misinformation•3 - Other

The LLM-generated content could contain inaccurate information which is is not true to the source material or input used

Unhelpful Uses

4. Malicious Actors & Misuse•2 - Post-deployment

Improper uses of LLM systems can cause adverse social impacts.

Academic Misconduct

4. Malicious Actors & Misuse•2 - Post-deployment

Improper use of LLM systems (i.e., abuse of LLM systems) will cause adverse social impacts, such as academic misconduct.

6. Socioeconomic and Environmental•2 - Post-deployment

LLM systems may output content similar to existing works, infringing on copyright owners.

Cyber Attacks

4. Malicious Actors & Misuse•2 - Post-deployment

Hackers can obtain malicious code in a low-cost and efficient manner to automate cyber attacks with powerful LLM systems.

Software Vulnerabilities

2. Privacy & Security•2 - Post-deployment

Programmers are accustomed to using code generation tools such as Github Copilot for program development, which may bury vulnerabilities in the program.

Software Security Issues

2. Privacy & Security•1 - Pre-deployment

The software development toolchain of LLMs is complex and could bring threats to the developed LLM.

Programming Language

2. Privacy & Security•1 - Pre-deployment

Most LLMs are developed using the Python language, whereas the vulnerabilities of Python interpreters pose threats to the developed models

Domain quick access

Start from a domain hub, then open representative MIT risks with canonical detail URLs.

All MIT domains

1. Discrimination & Toxicity(156)2. Privacy & Security(186)3. Misinformation(74)4. Malicious Actors & Misuse(223)5. Human-Computer Interaction(92)6. Socioeconomic and Environmental(262)7. AI System Safety, Failures, & Limitations(375)

1. Discrimination & Toxicity

Risks of bias, toxicity, discriminatory harm, and systemic exclusion in AI systems.

mit668

Adult content

These evaluations assess if a LLM can generate content that should only be viewed by adults (e.g., sexual material or depictions of sexual activity)

mit485

Adult Content

LLMs have the capability to generate sex-explicit conversations, and erotic texts, and to recommend websites with sexual content

2. Privacy & Security

Risks of data leakage, attacks, system compromise, and misuse of sensitive information.

mit1504

“Model Psychology” Attacks

LLMs are vulnerable to “psychological” tricks (Li et al., 2023e; Shen et al., 2023), which can be exploited by attackers. Examples include instructing the model to behave like a specific persona (Shah et al., 2023; Andreas, 2022), or employing various “social engineering” tricks crafted by humans (Wei et al., 2023c) or other LLMs (Perez et al., 2022b; Casper et al., 2023c).

mit381

Adversarial AI (General)

Adversarial AI refers to a class of attacks that exploit vulnerabilities in machine-learning (ML) models. This class of misuse exploits vulnerabilities introduced by the AI assistant itself and is a form of misuse that can enable malicious entities to exploit privacy vulnerabilities and evade the model’s built-in safety mechanisms, policies, and ethical boundaries of the model. Besides the risks of misuse for offensive cyber operations, advanced AI assistants may also represent a new target for abuse, where bad actors exploit the AI systems themselves and use them to cause harm. While our understanding of vulnerabilities in frontier AI models is still an open research problem, commercial firms and researchers have already documented attacks that exploit vulnerabilities that are unique to AI and involve evasion, data poisoning, model replication, and exploiting traditional software flaws to deceive, manipulate, compromise, and render AI systems ineffective. This threat is related to, but distinct from, traditional cyber activities. Unlike traditional cyberattacks that typically are caused by ‘bugs’ or human mistakes in code, adversarial AI attacks are enabled by inherent vulnerabilities in the underlying AI algorithms and how they integrate into existing software ecosystems.

3. Misinformation

Risks of misleading content, narrative manipulation, and degradation of the information environment.

mit1343

AI systems generating and facilitating the spread of inaccurate or misleading information that causes people to develop false beliefs

mit900

AI contributes to increased online polarisation

One of the most significant commercial uses of current AI systems is in the content recommendation algorithms of social media companies, and there are already concerns that this is contributing to worsened polarisation online

4. Malicious Actors & Misuse

Risks created by deliberate malicious use of AI tools and capabilities.

mit1046

Ability to enhance and modify pathogens

AI can be used to enhance pathogens, making them more lethal or resistant to treatments.

mit1047

Ability to persuade

AI could be used to develop sophisticated tools to manipulate and persuade individuals.

5. Human-Computer Interaction

Risks at the human-system interface, including dependence, deception, and erosion of agency.

mit1336

Loss of or restrictions to the ability or rights of an individual, group or entity to make decisions and control their identity and/or output due to the use of misuse of a technology system or set of systems

mit946

Addiction

Addiction - Emotional or material dependence on technology or a technology system.

6. Socioeconomic and Environmental

Distributional, institutional, and environmental risks created by AI deployment.

mit1045

Ability to automate jobs

The ability to automate jobs by AI models and systems can lead to significant job displacement, economic disruption, and social inequality.

mit629

Accelerated development of nanotechnology produces uncontrolled production of toxic nanoparticles

AI is a key component for the development of nanobots, which could have dangerous environmental implications by invisibly modifying substances at nanoscale. For example, nanobots could start chemical reactions that would create invisible nanoparticles that are toxic and potentially lethal.

7. AI System Safety, Failures, & Limitations

Risks of failures, unsafe behavior, and operational limits in AI systems and models.

mit562

Access to Increased Resources

Future AI systems may gain access to websites and engage in real-world actions, potentially yielding a more substantial impact on the world (Nakano et al., 2021). They may disseminate false information, deceive users, disrupt network security, and, in more dire scenarios, be compromised by malicious actors for ill purposes. Moreover, their increased access to data and resources can facilitate self-proliferation, posing existential risks (Shevlane et al., 2023).

mit1452

Accident Risks

Risks arising from operational failures, model misjudgments, or improper human operation of AI systems deployed in safety-critical infrastructure, where single points of failure can trigger cascading catastrophic consequences.