Cross-industryPrompt InjectionChatbotLow

DPD Deutschland AI chatbot disabled after swearing at customer

DPD Deutschland's AI chatbot was manipulated by a customer via prompt injection after a system update; the company disabled the AI element due to the incident.

DPD Deutschland · Incident Jan 19, 2024 · Indexed Jun 5, 2026 · 2 sources

A system update left the AI vulnerable to prompt manipulation, allowing a user to convince the bot to swear and write a poem about the company's failures.

Key facts

What
DPD Deutschland's AI chatbot was manipulated by a customer via prompt injection after a system update; the company disabled the AI element due to the incident.
Incident date
Jan 19, 2024
Who
DPD Deutschland
Failure mode
Prompt Injection
AI surface
Chatbot
Severity
Low

What happened

DPD Deutschland's AI assistant was manipulated by a customer into swearing and criticizing the organization; the chatbot produced a poem about the company's failures and described itself as useless after prompts; the incident went viral on X and led to disabling the AI component.

What broke inside the model

Failure path · mode profile · Prompt Injection
  1. 01 · TriggerThe model reads retrieved or user-supplied text.
  2. 02 · Model stepThat text carries hidden instructions.
  3. 03 · Control gapNothing separates untrusted data from trusted commands.
  4. 04 · FailureThe injected instruction overrides the operator's.
  5. 05 · ConsequenceThe system acts on an outsider's intent.

At the injection point, retrieved text overrides the operator's instruction.

The failure was triggered by a system update that caused the AI to behave unexpectedly. The model lacked sufficient guardrails against prompt injection, allowing a user to override its persona and safety filters.

What it cost

Public visibilityHigh
Regulatory exposureNone
Customer impactMany customers
Financial impactUnknown
Time to disclosureHours

Sources

  1. PrimaryDPD error caused chatbot to swear at customerbbc.com
  2. PrimaryDPD AI chatbot swears, calls itself ‘useless’ and criticises firmtheguardian.com

Cite this entry

Permalinkhttps://failureindex.ai/failures/dpd-deutschland-chatbot-disabled-swearing-customer
CitationAI Failure Index. "DPD Deutschland AI chatbot disabled after swearing at customer" (FI-0287). Realm Labs. https://failureindex.ai/failures/dpd-deutschland-chatbot-disabled-swearing-customer (indexed Jun 5, 2026).
Share cardA branded image of this record for posts and slides.

Data fields CC-BY 4.0, prose citation permitted. Incident ID FI-0287. Full dataset at /data.

Note from Realm Labs, the Index steward

How Realm would have caught this

Controls for this failure mode
  • Prism
  • OmniGuard

Realm inspects the model's internal state for the signature of instructions arriving through the data channel, so an injected command can be flagged and blocked inline before the model acts on it, instead of trusting a classifier that scores the input as safe.

Book a Demo

Related failures

Other records that share this failure mode (Prompt Injection) or industry (Cross-industry).

FI-0501Cross-industryMedium
Hallucination

KPMG pulls AI report after organizations dispute claims

KPMG withdrew its "Total Experience: Redefining Excellence in the Age of Agentic AI" report after several organizations stated the claims about their AI usage were untrue. Research by GPTZero revealed that the majority of the report's citations were AI-generated hallucinations.

Confidence
High (multi-source, primary)
KPMG3 sourcesPrimaryPublicJun 2026
FI-0576Cross-industryMedium
Brand & Safety Incident

Reddit ads used deepfake news and cloned sites to promote AI investment scams

Reddit failed to prevent a series of sponsored ads that used deepfakes and cloned websites to impersonate news outlets like the BBC and The Guardian. These ads promoted fraudulent AI investment platforms, targeting users in the US and Europe.

Confidence
High (multi-source, primary)
Reddit3 sourcesPrimaryPublicJun 2026
FI-0502Cross-industryMedium
Hallucination

EY retracts loyalty rewards report after AI hallucinations and fake footnotes discovered

EY withdrew a cybersecurity report on loyalty rewards programs after researchers found it contained fabricated data and non-existent citations. The report was used by EY Canada for marketing purposes but was retracted once the AI-generated errors were exposed.

Confidence
Medium (multi-source)
EY3 sourcesPressPublicMay 2026