Who is Lockdown Mode intended for?

According to OpenAI, Lockdown Mode is not for everyone. It is specifically designed for individuals and organizations, particularly ChatGPT Business users, who handle sensitive data and want stricter protection from data exfiltration risks related to prompt injection attacks.

OpenAI unveils Lockdown Mode to protect sensitive data from prompt injection attacks

OpenAI Targets Prompt Injection with New Lockdown Mode

OpenAI has announced a new security feature for ChatGPT called Lockdown Mode, designed specifically to protect sensitive data from prompt injection attacks. This move directly addresses a persistent vulnerability where malicious instructions embedded in web pages or other documents can manipulate a chatbot's behavior. The feature's release highlights the growing need for more robust security controls as AI models become more deeply integrated with confidential business data and workflows.

How Lockdown Mode Works

Lockdown Mode operates by reducing ChatGPT's attack surface, intentionally limiting certain high-risk functionalities to minimize the chance of data exfiltration. OpenAI clarifies that this is a mitigation strategy, not a complete solution, as vulnerabilities could still be present in uploaded files or cached web content. The feature is being rolled out to self-serve ChatGPT Business accounts and eligible personal accounts.

Disables live web browsing, restricting the model to cached content only.
Blocks the retrieval and display of images from the web.
Turns off advanced features like deep research and agent mode.

Enterprise Security Becomes a Priority

The introduction of Lockdown Mode signals a clear focus on the security requirements of enterprise and professional users. By offering a more restricted and controlled environment, OpenAI is working to build confidence among organizations that handle proprietary or sensitive information. This reflects a maturing AI market where foundational security and risk management are becoming as critical as raw model capability for driving business adoption.

Lockdown Mode is OpenAI's pragmatic acknowledgment that prompt injection isn't a solved problem. Instead of promising an unbreakable shield, the company is offering enterprise customers a tool to manage the risk, effectively trading some dynamic capabilities for a more secure, auditable operational posture.

>> Verify Original Transmission at TechCrunch AI