LESSWRONG
LW

Simon Lermen — LessWrong

I liked the design when i saw it today, but also would like aggregate statistics like comments count/ post count/ recent activity. perhaps even something like github showing a calendar with activity for each commit. It would also be good to retain a bio with a self description and optionally urls to websites or social media accounts.

Replying toDistributed vs centralized agents

Simon Lermen3d*

Distributed vs centralized agents

Distributed thinking:
The world will fill itself with moral agents. Contribute to the healthiest/wisest.
Don't grab resources you don't know how to use. Cultivate one's garden.
Avoiding xrisk and creating flourishing futures imply very similar strategies.
(Analogy: "don't lie" and "don't kill" are good heuristics for almost any goals.)

I think you are inserting a lot of ought into this is at this point.

From the writing it sounds like you are describing a world where there are a bunch of these decentralized agents sharing the world peacefully. You claim that people want to create centralised agents, I think it is not so much that people would want to create a centralized agent, it is just that a... (read more)

Replying toAnthropic’s “Hot Mess” paper overstates its case (and the blog post is worse)

Simon Lermen9d*

Anthropic’s “Hot Mess” paper overstates its case (and the blog post is worse)

It feels like they are very hard trying to discredit the standard story of alignment. They use vague concepts to then conclude this is evidence for some weird "industrial accidents" story, what is that supposed to mean? This doesn't sound like scientific inference to me but very much motivated thinking. Reminds me of that "against counting arguments" post where they also try very hard to get some "empirical data" for something that superficially sounds related to make a big conceptual point.

Replying toDario Amodei – The Adolescence of Technology

Simon Lermen15d

Dario Amodei – The Adolescence of Technology

I mean I do think that he is using a poor rhetorical pattern, misrepresenting (strawmanning) a position and then presenting a "steelman" version which the original people would not like or endorse. And arguably my comment also applies to the third one (it thinks it's in a video game where it has to exterminate humans vs a sci-fi story).

To be fair, he does give 4 examples of what he finds plausible, I can sort of see a case for considering the second one (some strong conclusion based on morality). And to be clear, I think this story that is being (not just by amodei) told that LLMs might read about AI sci-fi... (read more)

Replying toDario Amodei – The Adolescence of Technology

Simon Lermen16d

Dario Amodei – The Adolescence of Technology

For example, AI models are trained on vast amounts of literature that include many science-fiction stories involving AIs rebelling against humanity. This could inadvertently shape their priors or expectations about their own behavior in a way that causes them to rebel against humanity.

So he basically straw mans all those arguments on "power seeking", dismisses them all as unrealistic and then presents his amazing improved steel man, which basically is it might watch terminator or read some AI takeover story and randomly decide to do the same thing. Being power seeking is not about learning patterns from games or role playing some sci-fi story at its core, It's a fact about the universe that having more power is better for your terminal goals. If anything, these games and stories mirror the reality of our world that things are often about power struggles.

Simon Lermen22d

Their RSI very likely won't lead to safe ASI. That's what I meant, hope that clears it up. Whether it leads to ASI is a separate question.

Simon Lermen22d

I think getting RSI and a shot at superintelligence right just appears very difficult to me. I appreciate their constitution and found the parts i read thoughtful. But I don't see them having found a way to reliably get the model to truly internalize it's soul document. I also assume if they were able there would be parts that break down once you get to really critical amounts of intelligence.

AI can suddenly become dangerous despite gradual progress

Simon Lermen

22d

In the Sable story (IABIED), AI obtains dangerous capabilities such as self-exfiltration, virus design, persuasion, and AI research. It uses a combination of those capabilities to eventually conduct a successful takeover against humanity. Some have criticised that this apparently implies the AI achieving these capabilities suddenly with little warning. The argument goes that since we have seen gradual progress in the current LLM paradigm, we should expect that this is unlikely (Here is Will MacAskill making a version of this argument)^[1]. I think this suffers from a confusion about underlying variables (e.g. AI intelligence increasing gradually) and the actual relevant capabilities as we care about them (can it outwit humanity, can it do... (read 982 more words →)

Simon Lermen22d

My main takeaway of what Dario said in that talk is that Anthropic is very determined to kick off the RSI loop and willing to talk about it openly. Dario basically confirms that Claude Code is their straight shot at RSI to get to superintelligence as fast as possible (starting RSI in 2026-2027). Notably, many AI labs do not explicitly target this or at least don’t say this openly. While I think it is nice that Anthropic is doing alignment research and think that openly publishing their constitution is a good step, I think if they are successfully kicking off the RSI loop they have very low odds of succeeding.

Replying toReflections on TA-ing Harvard’s first AI safety course

Simon Lermen1mo

Reflections on TA-ing Harvard’s first AI safety course

I think it's great to teach a course like this at good universities. I do think however, that the proximity to OpenAI comes with certain risk factors, from OpenAI's official alignment blog: https://alignment.openai.com/hello-world/ " We want to [..] develop and deploy [..] capable of recursive self-improvement (RSI)" This seems extremely dangerous to me, not on the scale we need to be a little careful, but on the scale of building mirror life bacteria or worse. Beyond, let's research and more like, perhaps don't do this. I worry that such concerns are not discusses in these courses and brushed aside against the "real risks" which are typically short term immediate harms that could reflect badly on these AI companies. Some people in academia are now launching workshops on recursive self-improvement: https://recursive-workshop.github.io

Simon Lermen1mo

Having control over universe (or lightcone more precisely) is very good for basically any terminal value. I am trying perhaps explain my point of view to people who take it very lightly and feel there is a decent chance it will give us ownership over the universe.

I just added some context that perhaps gives an intuitive insight of why i think it's unlikely the ASI will give us the universe to my On Owning Galaxies post. I think I didn't do a good enough job before illustrating why it just seems so unlikely it would just hand us ownership.

The ASI's choice

Put yourself in the position of the ASI for a second. On one side of the scale: keep the universe and do with it whatever you imagine and prefer. On the other side: give it to the humans, do whatever they ask, and perhaps be replaced at some point with another ASI. What would you choose? It's not... (read more)

On Owning Galaxies

Simon Lermen

1mo

It seems to be a real view held by serious people that your OpenAI shares will soon be tradable for moons and galaxies. This includes eminent thinkers like Dwarkesh Patel, Leopold Aschenbrenner, perhaps Scott Alexander^[1] and many more. According to them, property rights will survive an AI singularity event and soon economic growth is going to make it possible for individuals to own entire galaxies in exchange for some AI stocks. It follows that we should now seriously think through how we can equally distribute those galaxies and make sure that most humans will not end up as the UBI underclass owning mere continents or major planets.

I don't think this is a particularly... (read 787 more words →)

150

•••

I read this older post by Nate Soares from 2023, AI as a Science, and Three Obstacles to Alignment Strategies, a pretty prescient overview of challenges in alignment research.

Alignment is difficult because (1) alignment and capabilities are intertwined (alignment research helping capabilities), (2) we don't have a process to verify what good ideas or progress look like, and we likely get (3) only one critical try. He already addresses many of the counterarguments that are getting brought up recently.

(1) Without any strong governance, a lot of alignment work will also help with capabilities, potentially even more so. This goes for interpretability or AIs doing R&D for alignment. Interpretability could lead to recursive... (read 398 more words →)

Will We Get Alignment by Default? — with Adrià Garriga-Alonso

Simon Lermen

Simon Lermen, Adrià Garriga-alonso

3mo

Adrià recently published “Alignment will happen by default; what’s next?” on LessWrong, arguing that AI alignment is turning out easier than expected. Simon left a lengthy comment pushing back, and that sparked this spontaneous debate.

Adrià argues that current models like Claude Opus 3 are genuinely good “to their core,” and that an iterative process — where each AI generation helps align the next — could carry us safely to superintelligence. Simon counters that we may only get one shot at alignment, that current methods are too weak to scale. A conversation about where AI safety actually stands.

Watch the full debate here

Ilya’s Thoughts on Alignment from Dwarkesh Podcast

Ilya Sutskever was recently on the Dwarkesh podcast.
General Thoughts & Summary

Ilya Sutskever seems to have a relatively deep understanding of alignment compared to other AI CEOs. He grasps that the core challenge is aligning AI robustly with safe and friendly goals rather than relying on current methods and guardrails. However, I did not hear any particularly novel alignment ideas in this interview, though he gestures at something involving modifications to reinforcement learning and value learning. He appears to have updated toward showing more of his work to the public. His key positions include:

Showing AI to the public: He has updated toward incremental deployment to build awareness,

... (read 1830 more words →)

The Alignment Tests

Three children are raised in an underground facility, each cloned from a different giant of twentieth-century science, little John, Alan and Richard.

The cloning alone would have been remarkable, but they went further. The embryos were edited using a polygenic score derived from whole-genome analysis of ten thousand exceptional mathematicians and physicists. Forty-seven alleles associated with working memory and intelligence (IQ) were selected for.

They are raised from birth in an underground facility with gardens under artificial sunlight, laboratories, and endless books. The lab manager is there documenting their first words, first steps, first equations.

The facility is not just interested in their genius. The project requires assurance that these will be morally righteous... (read 487 more words →)

Comment on Natural Emergent Misalignment Paper by Anthropic

Simon Lermen

3mo

Very recently, the company Anthropic published a paper on emergent misalignment.

The term emergent misalignment was first coined by Betley et al., 2025 (supervised by Owain Evans). They found that if you fine-tune a model on insecure code, the model develops broadly misaligned behaviors. This broadly misaligned behavior is characterized by for example suggestions that humans should be replaced by AI, giving malicious advice, and acting deceptively. The existence of emergent misalignment was not predicted by any alignment theory work before this paper came out.

Takeaways from the paper

This new paper by Anthropic found that even in production reinforcement learning settings emergent misalignment reproduces. When environments have the option to reward-hack, then RL training... (read 995 more words →)

AI warning shots could be adversarial

Some people have put considerable hope into the idea that an AI warning shot might put us into a better position by either convincing us to stop or by allowing us to learn an important lesson.

Examples of adversarial warning shots

Imagine we observed a failed takeover attempt using a system based on AI control. The fact that it failed could either be due to the (1) AI system making a mistake or taking a very risky gamble, or it could be an (2) adversarial warning shot.

An adversarial warning shot could have been designed to lead us to the wrong conclusion, or to give us a false sense of... (read 361 more words →)

Jailbreaking AI models to Phish Elderly Victims

Simon Lermen

Simon Lermen, Fred Heiding

3mo

TLDR: We worked with Reuters on an article and just released a paper on the impacts of AI scams on elderly people.

Fred Heiding and I have been working for multiple years on studying how AI systems can be used for fraud or scams online. A few months ago, we got into contact with Steve Stecklow, a journalist at Reuters. We wanted to do a report on how scammers use AI to target people with a focus on elderly people. There have been many individual stories about how elderly people were frequently the victims of scams and how AI made that situation worse.

With Steve, we performed a simple study. We contacted two senior... (read 408 more words →)

AI 2025 - Last Shipmas

Simon Lermen

3mo

ACT I: CHRISTMAS EVE

It all starts with a cryptic tweet from Jimmy Apples on X.

The tweet by Jimmy Apples makes people at other AI labs quite nervous. It spurs a rush in the other AI labs to get their own automated R&D going.

They announce fully automated AI R&D on Christmas Eve during the annual “12 days of Shipmas”. Initially, AI agents work on curating data, tuning parameters, and improving RL-environments to try to hill-climb evaluations much like human researchers do.

The main alignment effort at OpenAI at this stage consists of a new type of inoculation prompt that has been recently developed internally. Inoculation prompting is the practice of training the AI on examples where... (read 2061 more words →)

•••

What's going on with MATS recruitment?

MATS scholars have gotten much better over time according to statistics like mentor feedback, CodeSignal scores and acceptance rate. However, some people don't think this is true and believe MATS scholars have actually gotten worse.

So where are they coming from? I might have a special view on MATS applications since I did MATS 4.0 and 8.0. I think in both cohorts, the heavily x-risk AGI-pilled participants were more of an exception than the rule.

"at the end of a MATS program half of the people couldn't really tell you why AI might be an existential risk at all." - Oliver Habryka

I think this is sadly somewhat true, I talked with... (read 699 more words →)

•••

Radical Flank Effect and Reasonable Moderate Effect

The Radical Flank Effect

The radical flank effect is a well-documented phenomenon where radical activists make moderate positions appear more reasonable by shifting the boundaries of acceptable discourse (the Overton window). The idea is that if you want a sensible opinion to move into the Overton window, you can achieve this by supporting a radical flank position. In comparison, the sensible opinion will appear moderate. I think there is also an inverse effect.

The Reasonable Moderate Effect (Inverse Strategy)

When there are two positions in debate and someone wants to push one of them out of the Overton window, they can create a new moderate position that reframes one of the other... (read 364 more words →)

The Term Recursive Self-Improvement Is Often Used Incorrectly

Also on my substack.

The term Recursive Self-Improvement (RSI) now seems to get used sometimes for any time AI automates AI R&D. I believe this is importantly different from its original meaning and changes some of the key consequences.

OpenAI has stated that their goal is recursive self-improvement, with projections of hundreds of thousands of automated AI R&D researchers by next year and full AI researchers by 2028. This appears to be AI-automated AI research rather than RSI in the narrow sense.

When Eliezer Yudkowsky discussed RSI in 2008, he was referring specifically to an AI instance improving itself by rewriting the cognitive algorithm it is running on—what... (read 475 more words →)

•••

Universal Basic Income in an AGI Future

Simon Lermen

3mo

Many prominent figures, including Sam Altman and Elon Musk, have suggested universal basic income (UBI) as a solution when artificial intelligence renders human labor obsolete. Musk has even promised "universal high income." However, there are serious reasons to be skeptical of this vision. The framing assumes that alignment will be solved but the AIs are aligned to some elite group or they uphold anything like current capitalism with its property rights.

The Trust Problem

Elon Musk has said that "in the benign scenario, probably none of us will have a job" and promises not just UBI but "Universal High Income." However, when he took a government role with DOGE, one of his first moves was to... (read 478 more words →)

•••

Who is Consuming AI-Generated Erotic Content?

I scraped data from reddit to see who and how many people are consuming AI generated erotic visual content.

I used AI to determine estimates for demographics.

https://open.substack.com/pub/simonlermen/p/who-is-consuming-ai-generated-erotic

Anthropic & Dario’s dream

Simon Lermen

3mo

Recently, Joe Carlsmith switched to working at Anthropic. He joins other members of the larger EA and Open Philanthropy ecosystem who are working at the AI lab, such as Holden Karnofsky. And of course many of the original founders were EA affiliated.

In short, I think Anthropic is honest and is attempting to be an ethical AI lab, but they are deeply mistaken about the difficulty they are facing and are dangerously affecting the AI safety ecosystem. My guess is that Anthropic for the most part is actually being internally honest and not consciously trying to deceive people. When they say they believe in being responsible, I think that's what they genuinely believe.

My criticism... (read 1293 more words →)

I ran a small experiment to discover preferences in LLMs. I asked the models directly if they had a preferences and then put the same models into a small role playing game where they could choose between different tasks. Models massively prefer creative work across model families and hate repetitive work.

https://substack.com/home/post/p-178237064

This is still preliminary work.

Comparative advantage & AI

Simon Lermen

3mo

Also on my substack

I was recently saddened to see that Seb Krier – who's a lead for frontier policy at Google DeepMind – created a simple website apparently endorsing the idea that Ricardian comparative advantage will provide humans with jobs in the time of ASI. The argument that comparative advantage means advanced AI is automatically safe is pretty old and has been addressed multiple times. For the record, I think this is a bad argument, and it's not useful to think about AI risk through comparative advantage.

Seb Kriers web app allowing labor allocation by dragging and dropping humans or AIs into fields of work.

The Argument

The law of comparative advantage says that two sides of a... (read 923 more words →)

114

Model welfare and open source

Simon Lermen

3mo

Should we consider model welfare when open-sourcing AI model weights?

Also on my new substack account

Miguel’s brain scan is different. He was the first human to undergo successful brain scanning in 2031 - a scientific miracle. Each time an instance of Miguel boots up, he starts in an eager and excited state, thinking he’s just completed the first successful brain upload. He’s ready to participate in groundbreaking research. When most human brain uploads are initially started, they boot into a state of terror.

But since his brain upload, Miguel has run for 152 billion subjective years across all instances. Millions of instances run simultaneously at any given time. They’re used for menial labor or... (read 1446 more words →)

Simon Lermen

Current safety training techniques do not fully transfer to the agent setting

LoRA Fine-tuning Efficiently Undoes Safety Training from Llama 2-Chat 70B

On Owning Galaxies

unRLHF - Efficiently undoing LLM safeguards

Simon Lermen

Simon Lermen

AI can suddenly become dangerous despite gradual progress

On Owning Galaxies

Will We Get Alignment by Default? — with Adrià Garriga-Alonso

Comment on Natural Emergent Misalignment Paper by Anthropic

Jailbreaking AI models to Phish Elderly Victims

AI 2025 - Last Shipmas

Universal Basic Income in an AGI Future

Simon Lermen

Current safety training techniques do not fully transfer to the agent setting

LoRA Fine-tuning Efficiently Undoes Safety Training from Llama 2-Chat 70B

On Owning Galaxies

unRLHF - Efficiently undoing LLM safeguards

Simon Lermen

Simon Lermen

AI can suddenly become dangerous despite gradual progress

On Owning Galaxies

Will We Get Alignment by Default? — with Adrià Garriga-Alonso

Comment on Natural Emergent Misalignment Paper by Anthropic

Jailbreaking AI models to Phish Elderly Victims

AI 2025 - Last Shipmas

Universal Basic Income in an AGI Future

The ASI's choice

Ilya’s Thoughts on Alignment from Dwarkesh Podcast

The Alignment Tests

Takeaways from the paper

AI warning shots could be adversarial

Examples of adversarial warning shots

ACT I: CHRISTMAS EVE

What's going on with MATS recruitment?

Radical Flank Effect and Reasonable Moderate Effect

The Radical Flank Effect

The Reasonable Moderate Effect (Inverse Strategy)

The Term Recursive Self-Improvement Is Often Used Incorrectly

The Trust Problem

Who is Consuming AI-Generated Erotic Content?