Companies should be liable for the serious privacy concerns of LLMs

4 hours ago 1

[Submitted on 18 Jun 2025]

View PDF HTML (experimental)

Abstract:We study privacy leakage in the reasoning traces of large reasoning models used as personal agents. Unlike final outputs, reasoning traces are often assumed to be internal and safe. We challenge this assumption by showing that reasoning traces frequently contain sensitive user data, which can be extracted via prompt injections or accidentally leak into outputs. Through probing and agentic evaluations, we demonstrate that test-time compute approaches, particularly increased reasoning steps, amplify such leakage. While increasing the budget of those test-time compute approaches makes models more cautious in their final answers, it also leads them to reason more verbosely and leak more in their own thinking. This reveals a core tension: reasoning improves utility but enlarges the privacy attack surface. We argue that safety efforts must extend to the model's internal thinking, not just its outputs.

Submission history

From: Tommaso Green [view email]
[v1] Wed, 18 Jun 2025 17:57:01 UTC (9,586 KB)

Read Entire Article
  1. Homepage
  2. Technology
  3. Companies should be liable for the serious privacy concerns of LLMs

Related

Quick question for platform engineers or DevOps engineers

Quick question for platform engineers or DevOps engineers

19 minutes ago 0
Show HN: I built a Résumé tool that helps people land job interviews

Show HN: I built a Résumé tool that helps people land job in...

23 minutes ago 0
Statement on Smartphone and Social Media Impact on Teen Mental Health

Statement on Smartphone and Social Media Impact on Teen Ment...

26 minutes ago 0
Hostinger Web Hosting