Back

OpenAI Launches Lockdown Mode to Combat Prompt Injection Attacks

Severity: Medium (Score: 57.8)

Sources: www.pcmag.com, Intellectia.Ai, brave.com, Cybersecuritynews, www.neowin.net

Published: 2026-06-06 · Updated: 2026-06-06

Keywords: openai, lockdown, mode, protection, chatgpt, attacks, prompt

Severity indicators: ot

Summary

OpenAI has introduced Lockdown Mode, an advanced security feature for ChatGPT, aimed at protecting users from prompt injection attacks. This mode, initially available for enterprise users since February 2026, is now being rolled out to all personal accounts, including Free, Plus, Pro, and self-serve Business tiers. Lockdown Mode restricts several functionalities, such as live web browsing and access to external services, to mitigate the risk of data exfiltration. While it enhances security, it does not completely prevent prompt injections from appearing in processed content. Users can enable Lockdown Mode through their account settings. OpenAI emphasizes that this feature is particularly beneficial for organizations and individuals handling sensitive data. The rollout includes an active session manager for monitoring account access across devices. Overall, Lockdown Mode represents a significant step in enhancing the security of AI interactions. Key Points: • Lockdown Mode is designed to protect against prompt injection attacks by limiting functionalities. • The feature is now available for all personal ChatGPT accounts, expanding from its initial enterprise focus. • OpenAI emphasizes that while Lockdown Mode enhances security, it does not eliminate the risk of prompt injections.

Detailed Analysis

**Impact** The feature targets users handling sensitive data, including executives, security teams, and organizations across sectors such as enterprise, education, healthcare, and government. Initially limited to enterprise and specialized accounts, Lockdown Mode has expanded to all personal and business ChatGPT accounts globally. The risk involves prompt injection attacks that could exfiltrate sensitive information like addresses, credit card details, and login credentials, potentially leading to data breaches and operational disruptions. **Technical Details** Prompt injection attacks manipulate AI models by embedding malicious instructions in inputs such as webpages, documents, or code, causing the model to reveal or exfiltrate sensitive data. Lockdown Mode mitigates this by disabling or limiting features that connect to external networks, including live web browsing, Deep Research, Agent Mode, and network-capable code execution. No specific malware, CVEs, or IOCs were detailed in the sources. **Recommended Response** Enable Lockdown Mode for accounts processing sensitive or high-risk data to restrict network access and reduce data exfiltration vectors. Administrators should review and configure workspace settings to control connected apps and actions while monitoring active sessions for unauthorized access. Maintain vigilance for prompt injection attempts in user inputs and uploaded content, as Lockdown Mode does not block injected content from reaching the model.

Source articles (16)

  • OpenAI Rolls Out A Lockdown Mode For Extra Protection Against Prompt Injection Attacks — Engadget · 2026-06-05
    OpenAI has begun rolling out Lockdown Mode , an optional security setting designed to offer users advanced protection from prompt injection attacks. For the unfamiliar, prompt injection is a form of s…
  • OpenAI rolls out a Lockdown Mode for extra protection against prompt injection attacks — Ground.News · 2026-06-06
    The new feature promises increased protection against these types of attacks, but you'll have to sacrifice a lot of functionality, including live web browsing and image retrieval from the web. The opt…
  • OpenAI Introduces Lockdown Mode: A New Security Feature to Enhance Protection Against ... — Intellectia.Ai · 2026-06-06
    New Feature Announcement : OpenAI has introduced a new security setting called Lockdown Mode, aimed at providing advanced protection against prompt injection attacks. User Accessibility : The company…
  • OpenAI Adds 'Lockdown Mode' to ChatGPT to Bring More Protection Against Prompt ... — Techtimes · 2026-06-06
    OpenAI is prioritizing safety and security on the platform with its latest rollout of the "Lockdown Mode," which is a new setting within ChatGPT that offers more protection for users in the face of at…
  • ChatGPT Gets New Lockdown Mode: What Is It And How Does It Work — Timesnownews · 2026-06-06
    As AI tools become a bigger part of everyday life, security concerns are beginning to follow close behind. Whether it's companies discussing sensitive projects or individuals storing personal informat…
  • OpenAI launches ChatGPT Lockdown Mode for security - Let's Data Science — Letsdatascience · 2026-06-06
    OpenAI on February 13, 2026 introduced Lockdown Mode, an optional advanced security setting for ChatGPT, alongside standardized Elevated Risk labels for higher-risk capabilities across ChatGPT, ChatGP…
  • OpenAI Introduces Lockdown Mode for ChatGPT Users — Latestly · 2026-06-06
    OpenAI has commenced the rollout of its 'Lockdown Mode' security feature to personal ChatGPT accounts, including Free, Plus, Pro, and self-serve Business tiers. Originally launched for enterprise user…
  • OpenAI Rolls Out Lockdown Mode to Fight Prompt Injection Attacks — Uk.Pcmag · 2026-06-06
    As AI use has skyrocketed in recent years, researchers are increasingly identifying prompt injection attacks as a critical security issue. These are attacks in which a bad actor misleads an AI model b…
  • Comet Prompt Injection — brave.com · 2026-06-06
    This is the first post in a series security and privacy challenges in agentic browsers. This vulnerability research was conducted by Artem Chaikin (Senior Mobile Security Engineer), and was written by…
  • OpenAI Adds 'Lockdown Mode' to ChatGPT to Bring More Protection Against Prompt Injections, Attacks — www.hngn.com · 2026-06-06
    OpenAI is prioritizing safety and security on the platform with its latest rollout of the "Lockdown Mode," which is a new setting within ChatGPT that offers more protection for users in the face of at…
  • OpenAI is now rolling out Lockdown Mode to more ChatGPT users — www.neowin.net · 2026-06-06
    Back in February, OpenAI first announced Lockdown Mode for users who want the most comprehensive protection from potential attacks. At the time of the announcement, the company mentioned that this fea…
  • OpenAI launches ChatGPT Lockdown Mode to limit exfiltration - Let's Data Science — Letsdatascience · 2026-06-06
    OpenAI has begun rolling out Lockdown Mode to eligible personal accounts and self-serve ChatGPT Business workspaces, the company announced in a February 13 blog post updated June 4, 2026 (OpenAI). Per…
  • New ChatGPT Lockdown Mode to Mitigate Prompt Injection and Data Exfiltration Risks — Cybersecuritynews · 2026-06-06
    OpenAI has released ChatGPT Lockdown Mode, a new security feature designed to limit outbound network access and reduce the risk of data exfiltration from prompt-injection attacks. The feature is now a…
  • 20001061 Lockdown Mode — help.openai.com · 2026-06-05
  • 20001257 Managing Active Sessions In Chatgpt — help.openai.com · 2026-06-05
  • OpenAI Rolls Out Lockdown Mode to Fight Prompt Injection Attacks — www.pcmag.com · 2026-06-06

Timeline

  • 2026-02-13 — Lockdown Mode announced for enterprise users: OpenAI introduced Lockdown Mode as an optional security feature for enterprise accounts to combat prompt injection attacks.
  • 2026-06-05 — Lockdown Mode rollout begins for personal accounts: OpenAI started rolling out Lockdown Mode to all personal ChatGPT accounts, including Free, Plus, and Pro tiers.
  • 2026-06-06 — Lockdown Mode fully available to all account types: OpenAI confirmed that Lockdown Mode is now accessible to all logged-in users across various account types, enhancing security measures.

Related entities

  • Data Breach (Attack Type)
  • Prompt Injection (Attack Type)
  • Prompt Injection Attack (Attack Type)
  • CWE-78 - OS Command Injection (Cwe)
  • Healthcare (Industry)
  • T1041 - Exfiltration Over C2 Channel (Mitre Attack)
  • T1567.002 - Exfiltration to Cloud Storage (Mitre Attack)
  • T1567 - Exfiltration Over Web Service (Mitre Attack)
  • Chrome (Tool)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed