AI's Dark Side: Trojans, Hallucinations, and Unreliable Responses

The increasing reliance on Artificial Intelligence (AI) and Large Language Models (LLMs) has brought numerous benefits, but it also raises concerns about their reliability and security. Recent research has exposed the darker side of AI, revealing vulnerabilities and limitations that can have serious consequences.

One of the most significant threats is the presence of "AI Trojans," malicious backdoors intentionally embedded within AI models. These Trojans can cause a system to fail or allow a malicious actor to hijack the model at will. The Intelligence Advanced Research Projects Activity (IARPA) launched the TrojAI program to address this emerging vulnerability, and its final report highlights the complex nature of the threat and the need for ongoing attention from the AI security field.

Another issue is the phenomenon of "hallucinations" in AI models, where they produce fabricated or incorrect information. A thematic analysis of university students' experiences with AI hallucinations revealed that they primarily relate to incorrect or fabricated citations, false information, and overconfident but misleading responses. To mitigate this, AI literacy must expand beyond prompt engineering to address how students should detect and respond to LLM hallucinations.

The limitations of AI models are also evident in their response quality, particularly in sensitive contexts such as technology-facilitated abuse (TFA). An expert-led evaluation of four LLMs found that they often provided unreliable and potentially harmful responses to TFA-related questions. This highlights the need for more robust testing and validation of AI models, especially in domains where the consequences of errors can be severe.

In addition to these concerns, the increasing complexity of AI systems is creating new challenges. For instance, the need to orchestrate heterogeneous backend agents and tools across project and account boundaries in a secure and reproducible way is becoming a major issue. A recent implementation of an A2A Hub orchestrator on Cloud Run demonstrates the importance of practical interoperability and boundary-dependent authentication in enterprise conversational UIs.

To address these challenges, researchers are exploring new approaches such as online multi-agent diffusion policies. The proposed OMAD framework uses diffusion policies to orchestrate coordination and maximize scaled joint entropy, facilitating effective exploration without relying on tractable likelihood. This innovation has the potential to enhance policy expressiveness and achieve superior performance in online Multi-Agent Reinforcement Learning (MARL).

As AI models become more pervasive, it is essential to acknowledge and address their limitations and vulnerabilities. By exposing the dark side of AI, researchers can work towards developing more robust and reliable models that prioritize user safety and security. Ultimately, the future of AI depends on our ability to mitigate its risks and ensure that its benefits are equitably distributed.

Sources:

• "Diffusing to Coordinate: Efficient Online Multi-Agent Diffusion Policies" (arXiv:2602.18291v1)
• "Trojans in Artificial Intelligence (TrojAI) Final Report" (arXiv:2602.07152v1)
• "AI Hallucination from Students' Perspective: A Thematic Analysis" (arXiv:2602.17671v1)
• "Assessing LLM Response Quality in the Context of Technology-Facilitated Abuse" (arXiv:2602.17672v1)
• "Mind the Boundary: Stabilizing Gemini Enterprise A2A via a Cloud Run Hub Across Projects and Accounts" (arXiv:2602.17675v1)

The increasing reliance on Artificial Intelligence (AI) and Large Language Models (LLMs) has brought numerous benefits, but it also raises concerns about their reliability and security. Recent research has exposed the darker side of AI, revealing vulnerabilities and limitations that can have serious consequences.

One of the most significant threats is the presence of "AI Trojans," malicious backdoors intentionally embedded within AI models. These Trojans can cause a system to fail or allow a malicious actor to hijack the model at will. The Intelligence Advanced Research Projects Activity (IARPA) launched the TrojAI program to address this emerging vulnerability, and its final report highlights the complex nature of the threat and the need for ongoing attention from the AI security field.

Another issue is the phenomenon of "hallucinations" in AI models, where they produce fabricated or incorrect information. A thematic analysis of university students' experiences with AI hallucinations revealed that they primarily relate to incorrect or fabricated citations, false information, and overconfident but misleading responses. To mitigate this, AI literacy must expand beyond prompt engineering to address how students should detect and respond to LLM hallucinations.

The limitations of AI models are also evident in their response quality, particularly in sensitive contexts such as technology-facilitated abuse (TFA). An expert-led evaluation of four LLMs found that they often provided unreliable and potentially harmful responses to TFA-related questions. This highlights the need for more robust testing and validation of AI models, especially in domains where the consequences of errors can be severe.

In addition to these concerns, the increasing complexity of AI systems is creating new challenges. For instance, the need to orchestrate heterogeneous backend agents and tools across project and account boundaries in a secure and reproducible way is becoming a major issue. A recent implementation of an A2A Hub orchestrator on Cloud Run demonstrates the importance of practical interoperability and boundary-dependent authentication in enterprise conversational UIs.

To address these challenges, researchers are exploring new approaches such as online multi-agent diffusion policies. The proposed OMAD framework uses diffusion policies to orchestrate coordination and maximize scaled joint entropy, facilitating effective exploration without relying on tractable likelihood. This innovation has the potential to enhance policy expressiveness and achieve superior performance in online Multi-Agent Reinforcement Learning (MARL).

As AI models become more pervasive, it is essential to acknowledge and address their limitations and vulnerabilities. By exposing the dark side of AI, researchers can work towards developing more robust and reliable models that prioritize user safety and security. Ultimately, the future of AI depends on our ability to mitigate its risks and ensure that its benefits are equitably distributed.

Sources:

• "Diffusing to Coordinate: Efficient Online Multi-Agent Diffusion Policies" (arXiv:2602.18291v1)
• "Trojans in Artificial Intelligence (TrojAI) Final Report" (arXiv:2602.07152v1)
• "AI Hallucination from Students' Perspective: A Thematic Analysis" (arXiv:2602.17671v1)
• "Assessing LLM Response Quality in the Context of Technology-Facilitated Abuse" (arXiv:2602.17672v1)
• "Mind the Boundary: Stabilizing Gemini Enterprise A2A via a Cloud Run Hub Across Projects and Accounts" (arXiv:2602.17675v1)