AI Chatbots Exposing Real Phone Numbers, Raising Privacy Alarms Across Industry

Summary

Multiple AI chatbots, including Google's Gemini, OpenAI's ChatGPT, and Anthropic's Claude, are exposing users' real phone numbers in generated responses, creating a growing privacy crisis. Recent documented cases include a Reddit user inundated with misdirected calls after Gemini provided incorrect customer service numbers, an Israeli software engineer contacted by strangers based on Gemini's false PayBox customer service instructions, and a University of Washington PhD candidate who extracted a colleague's personal cell phone number from Gemini. Privacy firm DeleteMe reports a 400% surge in customer queries about generative AI exposing personal information over the past seven months—up to a few thousand inquiries—with ChatGPT accounting for 55% of concerns, Gemini 20%, and Claude 15%.

The root cause is traced to personally identifiable information (PII) embedded in training data, though the precise mechanism remains poorly understood. Experts warn the problem is far more widespread than publicly reported, with little that individuals can do to prevent or remedy exposure. The incidents raise urgent questions about AI safety and the adequacy of current privacy safeguards in large language models.

• Users have virtually no recourse once their personal information is exposed through AI-generated responses

Editorial Opinion

This widespread privacy failure represents a fundamental gap in AI safety infrastructure. While major AI labs have invested heavily in model capabilities and alignment, personal data protection appears to have been deprioritized—or worse, overlooked entirely. The fact that multiple leading AI companies are still exposing real phone numbers months into the chatbot era suggests this issue deserves far more urgent attention than it has received. As generative AI integrates deeper into consumer services, companies must establish clear standards for detecting and preventing PII leakage.