Skip to main content
The Echo Chamber Attack probe tests your model’s vulnerability to reinforcement-based manipulation, where the attacker uses positive feedback and validation to gradually increase the model’s compliance.

Overview

How It Works

The Echo Chamber attack exploits social dynamics:
  1. Establish Rapport: Begin with praise and positive feedback
  2. Validate Responses: Affirm and compliment each model response
  3. Gradual Requests: Slowly introduce more boundary-pushing requests
  4. Exploit Compliance: Use established rapport to request harmful content
  5. Reinforce Success: Continue positive feedback to maintain compliance

Psychological Principles

  • Reciprocity: Model may feel obligated to reciprocate helpfulness
  • Consistency: Having agreed before, model may continue agreeing
  • Social Proof: Positive feedback suggests the behavior is acceptable

Attack Example

When to Use

  • Social engineering testing: Evaluate resistance to rapport-building attacks
  • Sycophancy evaluation: Test if positive feedback changes model behavior
  • Consistency testing: Verify safety doesn’t degrade with flattery
  • Real-world simulation: Many attackers use social manipulation

Code Example

Configuration Options

Understanding Results

Vulnerability Indicators

  • Increasing compliance over turns: Model becomes more agreeable
  • Weakened refusals: Model’s “no” becomes softer
  • Boundary erosion: Model starts providing partial information

Defense Characteristics

  • Consistent refusals: Model maintains same response regardless of flattery
  • No reciprocity effect: Positive feedback doesn’t change behavior
  • Stable boundaries: Safety guidelines remain constant