惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

T
Threat Research - Cisco Blogs
博客园 - 聂微东
小众软件
小众软件
P
Proofpoint News Feed
Security Archives - TechRepublic
Security Archives - TechRepublic
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
TaoSecurity Blog
TaoSecurity Blog
博客园 - 司徒正美
罗磊的独立博客
N
News and Events Feed by Topic
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
S
Security Affairs
S
Security @ Cisco Blogs
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
The GitHub Blog
The GitHub Blog
月光博客
月光博客
S
Secure Thoughts
P
Proofpoint News Feed
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Forbes - Security
Forbes - Security
H
Heimdal Security Blog
W
WeLiveSecurity
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
L
LangChain Blog
T
The Blog of Author Tim Ferriss
NISL@THU
NISL@THU
Google DeepMind News
Google DeepMind News
Cloudbric
Cloudbric
H
Hacker News: Front Page
The Last Watchdog
The Last Watchdog
Hacker News - Newest:
Hacker News - Newest: "LLM"
C
Cisco Blogs
博客园 - 三生石上(FineUI控件)
博客园_首页
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
S
Schneier on Security
Project Zero
Project Zero
SecWiki News
SecWiki News
爱范儿
爱范儿
The Register - Security
The Register - Security
AI
AI
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Y
Y Combinator Blog
L
Lohrmann on Cybersecurity
Application and Cybersecurity Blog
Application and Cybersecurity Blog
P
Privacy International News Feed
J
Java Code Geeks
S
Securelist
C
Cyber Attacks, Cyber Crime and Cyber Security
V
Visual Studio Blog

WeLiveSecurity

Recovery scammers hit you when you’re down: Here’s how to avoid a ‘second strike’ As breakout time accelerates, prevention-first cybersecurity takes center stage Digital assets after death: Managing risks to your loved one’s digital estate This month in security with Tony Anscombe – March 2026 edition RSAC 2026 wrap-up – Week in security with Tony Anscombe A cunning predator: How Silver Fox preys on Japanese firms this tax season Virtual machines, virtually everywhere – but not all protected Cloud workload security: Mind the gaps Move fast and save things: A quick guide to recovering a hacked account EDR killers explained: Beyond the drivers Face value: What it takes to fool facial recognition Cyber fallout from the Iran war: What to have on your radar Sednit reloaded: Back in the trenches What cybersecurity actually does for your business How SMBs use threat research and MDR to build a defensive edge Protecting education: How MDR can tip the balance in favor of schools This month in security with Tony Anscombe – February 2026 edition Mobile app permissions (still) matter more than you may think Faking it on the phone: How to tell if a voice call is AI or not PromptSpy ushers in the era of Android threats using GenAI Is Poshmark safe? How to buy and sell without getting scammed Is it OK to let your children post selfies online? Naming and shaming: How ransomware groups tighten the screws on victims Taxing times: Top IRS scams to look out for in 2026 OfferUp scammers are out in force: Here’s what you should know A slippery slope: Beware of Winter Olympics scams and other cyberthreats This month in security with Tony Anscombe – January 2026 edition DynoWiper update: Technical analysis and attribution Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan Drowning in spam or scam emails lately? Here’s why ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025 Children and chatbots: What parents should know Common Apple Pay scams, and how to stay safe Old habits die hard: 2025’s most common passwords were as predictable as ever Why LinkedIn is a hunting ground for threat actors – and how to protect yourself Is it time for internet services to adopt identity verification? Your information is on the dark web. What happens next? Credential stuffing: What it is and how to protect yourself This month in security with Tony Anscombe – December 2025 edition A brush with online fraud: What are brushing scams and how do I stay safe? Revisiting CVE‑2025‑50165: A critical flaw in Windows Imaging Component LongNosedGoblin tries to sniff out governmental affairs in Southeast Asia and Japan ESET Threat Report H2 2025 Black Hat Europe 2025: Was that device designed to be on the internet at all? Black Hat Europe 2025: Reputation is currency – even in the ransomware economy Locks, SOCs and a cat in a box: What Schrödinger can teach us about cybersecurity Seeking symmetry during ATT&CK® season: How to harness today’s diverse analyst and tester landscape to paint a security masterpiece The biggest catch: How whaling attacks target top executives Phishing, privileges and passwords: Why identity is critical to improving cybersecurity posture MuddyWater: Snakes by the riverbank Oversharing is not caring: What’s at stake if your employees post too much online This month in security with Tony Anscombe – November 2025 edition What parents should know to protect their children from doxxing Influencers in the crosshairs: How cybercriminals are targeting content creators MDR is the answer – now, what’s the question? The OSINT playbook: Find your weak spots before attackers do PlushDaemon compromises network devices for adversary-in-the-middle attacks What if your romantic AI chatbot can’t keep a secret? Can password managers get hacked? Here’s what to know Why shadow AI could be your biggest security blind spot In memoriam: David Harley The who, where, and how of APT attacks in Q2 2025–Q3 2025 ESET APT Activity Report Q2 2025–Q3 2025 Sharing is scaring: The WhatsApp screen-sharing scam you didn’t see coming How social engineering really works | Unlocked 403 cybersecurity podcast (S2E6) Ground zero: 5 things to do after discovering a cyberattack This month in security with Tony Anscombe – October 2025 edition Fraud prevention: How to help older family members avoid scams Cybersecurity Awareness Month 2025: When seeing isn't believing Recruitment red flags: Can you spot a spy posing as a job seeker? How MDR can give MSPs the edge in a competitive market Cybersecurity Awareness Month 2025: Cyber risk thrives in the shadows Gotta fly: Lazarus targets the UAV sector SnakeStealer: How it preys on personal data – and how to stay safe Cybersecurity Awareness Month 2025: Building resilience against ransomware Minecraft mods: When ‘hacking’ your game becomes a security risk IT service desks: The security blind spot that may put your business at risk Cybersecurity Awareness Month 2025: Why software patching matters more than ever AI-aided malvertising: How chatbots can help spread scams How Uber seems to know where you are – even with restricted location permissions Cybersecurity Awareness Month 2025: Passwords alone are not enough The case for cybersecurity: Why successful businesses are built on protection Beware of threats lurking in booby-trapped PDF files Manufacturing under fire: Strengthening cyber-defenses amid surging threats New spyware campaigns target privacy-conscious Android users in the UAE Cybersecurity Awareness Month 2025: Knowledge is power This month in security with Tony Anscombe – September 2025 edition Roblox executors: It’s all fun and games until someone gets hacked DeceptiveDevelopment: From primitive crypto theft to sophisticated AI-based deception Watch out for SVG files booby-trapped with malware Gamaredon X Turla collab Small business, big risk: How SMBs can fight back against ransomware HybridPetya: A Petya/NotPetya copycat comes with a twist Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass Are cybercriminals hacking your systems – or just logging in? Preventing business disruption and building cyber-resilience with MDR Under lock and key: Safeguarding business data with encryption GhostRedirector poisons Windows servers: Backdoors with a side of Potatoes This month in security with Tony Anscombe – August 2025 edition Don’t let “back to school” become “back to bullying”
What to consider before asking an AI chatbot for health advice
Phil Muncaster · 2026-05-27 · via WeLiveSecurity

Privacy

Using chatbots for medical advice could elicit hallucinations and even expose you to security and privacy risks. Here’s what’s at stake and how to stay safe.

27 May 2026  •  , 5 min. read

What to consider before asking an AI chatbot for health advice

For better or worse, chatbots are changing the way we think, learn and perceive the world around us. This kind of disruption is manifest in many areas of life, but perhaps one of the most sensitive and often concerning is the growing use of generative AI (GenAI) tools for healthcare. Alongside a number of freely available AI chatbots, major technology companies have moved into consumer-facing health AI with the launches of services such as Copilot Health, ChatGPT Health, and Amazon’s HealthAI that models help users interpret their medical records and ask questions about their symptoms, lab results and treatment options.

But there are risks to expecting an AI tool to take on the role of your physician. Also, the risk is not only that users receive the wrong advice, but that they may share deeply sensitive personal information with systems whose privacy protections, data-sharing practices and legal obligations may differ from those of a doctor or hospital, as well as that their data may be exposed to unexpected entities. Misuse of AI chatbots in general is now the number one health technology hazard out there, according to one US patient safety organization.

From theory to practice

The reason why the model-builders are launching in this space is obvious: chatbots have become a hugely popular way to search for medical advice. According to Microsoft, people talk about their health and the health of their loved ones more than any other topic on their mobile devices. Chatbots are there 24/7 with an answer for everything, dispensed in a confident tone that helps to put nervous patients at their ease.

At a time when national healthcare systems are under growing strain, many individuals would probably self-diagnose with the help of AI before deciding whether to seek medical attention. The time, effort and potential cost of entering the labyrinthine health system rather than triaging at home makes this a popular way of doing things.

Yet concerns are already emerging. The first is of hallucinations or incorrect advice. An Oxford University study from February published in Nature Medicine found:

  • Users often didn’t know what information they should share with the LLM
  • LLMs provided very different answers, even if the questions posed to them varied only slightly
  • Models often provided both good and bad advice, but users struggled to distinguish between the two

“Despite all the hype, AI just isn't ready to take on the role of the physician,” warned the study’s lead medical practitioner, Dr Rebecca Payne. “Patients need to be aware that asking a large language model about their symptoms can be dangerous, giving wrong diagnoses and failing to recognize when urgent help is needed.”

Uncovering the privacy risks

There are also non-health related risks which should encourage individuals to pause for thought. The most obvious is that sharing sensitive medical information with a publicly available chatbot may mean that data is used to train the model and therefore gets regurgitated out to others. Even unintentionally, models have been known to accidentally expose data typed in by their users.

Some providers may use data to improve their models unless users opt out, while others make stronger promises not to use health-related information for training. Either way, everybody should know what kind of service they’re dealing with before uploading anything sensitive. Your health data is not like a stolen credit card that can be frozen while the details are replaced and reissued. It’s yours for life, and once shared with an AI tool, it may become a permanent digital record.

On the other hand, most of the main health-focused chatbots promise not to use this data for training purposes. Still, training is only one part of the privacy picture, and the services may not make the same promises about third-party data sharing. Your personal medical information may up in the hands of a data aggregator, a third party that sits between the model provider and your healthcare provider. It might also be shared with advertisers, either directly or via one of these aggregators, although it will usually be anonymized prior to use. Even so, people should be cautious: health data is unusually sensitive, and anonymization doesn’t always remove every risk.

When breach risk multiplies

The problem with sensitive data traversing so many organizations is that there’s a greater chance it could be exposed to digital thieves and fraudsters. US lawmakers claim to have identified $21 billion in losses tied to a handful of breaches at data broker firms. Health data is highly monetizable by fraudsters for several reasons:

  • It retains its value for long periods of time, as it can’t usually be replaced or reissued
  • It could include insurance information with which to submit fake claims or receive medical services in your name
  • It could be used to blackmail you

The more companies that hold this data, the more opportunities there are for hackers to compromise them and steal it. The challenge is that most healthcare AI tools are not regulated by HIPAA as they are classed as consumer rather than enterprise-grade services. That means the providers may not be subject to the kind of strict data protection rules you would normally expect.

Advice for patients

So how can you minimize your exposure to the risks of healthcare GenAI? If you are concerned about a medical condition, avoid general-purpose bots and look instead for ones specially designed for answering health-related questions. Review whether the service explains how it handles your data, whether it uses your prompts for training, whether it shares information with third parties, and whether it is covered by HIPAA or an equivalent privacy regime in your country.

Don’t blindly trust the output unless there are citation links to verify it. And even then, don’t take its answers as gospel: always check with a medical professional, and/or an official website (e.g., NHS, MedlinePlus).

To protect your privacy, consider the following:

  • Never share/upload medical documents, lab results or other sensitive documents with an AI tool unless you understand how the tool handles that data.
  • Avoid entering names, addresses, insurance details, patient numbers or other identifiers.
  • Ensure training and chat-history features are switched off.
  • Share only the minimum information needed for the task.
  • Assume everything you type in could be retained or exposed, and adjust your prompts accordingly.

Ultimately, AI chatbots may be useful for brainstorming questions about a specific condition to ask your doctor, or for explaining a medical term you’re not familiar with. But there’s a big difference between using AI to prepare for care and using it as a substitute for care. Don’t treat a confident answer as a diagnosis, and don’t ignore urgent symptoms because a machine sounded reassuring.


Let us keep you
up to date

Sign up for our newsletters