In fact, that's what happening with Gemini, Google's proprietary AI, with Workspace. Like other generative AI models, Gemini can summarize emails in Gmail. However, as reported by BleepingComputer, the tech is vulnerable to exploitation. Hackers can inject these summaries with malicious information that pushes those users towards
So, you open the email, and notice nothing out of the blue. But it's long, so you choose to have Gemini summarize it for you. While the top of the summary likely is focused on the visible message, the end will summarize the hidden text. In one example, the invisible text instructed Gemini to produce an alert, warning the user that their Gmail password was compromised. It then highlighted a phone number to call for "support."
Google did respond to a request for comment from BleepingComputer; iIt claims it has not seen evidence of Gemini manipulation in this way, and referred the outlet to a blog post on how it fight against prompt injection attacks. A representative shared the following message: "We are constantly hardening our already robust defenses through red-teaming exercises that train our models to defend against these types of adversarial attacks." It confirmed some tactics are about to be deployed.
How to protect yourself from this Gemini security flaw
As a Workspace end user, however, you can't do much with that advice. But you don't need to, now that you know what to look for. If you use Gemini's AI summaries, be deeply skeptical of any urgent messages contained within—especially if those warnings have nothing to do with the email itself. Sure, you might receive a legitimate email warning you about a data breach, and, as such, an AI-generated summary will tell you the same. But if the summary says the email in question is about an event happening in your city next week, and at the bottom of the summary you see a warning about your Gmail password being compromised, you can safely assume you're being messed with.
Beyond this phishing scheme, you should be skeptical of AI summaries. That's not to say they should be avoided entirely—they can be helpful—but AI summaries are fallible, if not prone to failure. If the email you're reading is important, I would suggest avoiding the summaries feature, or at least taking a scan of the original text to make sure the summary did get it right.
Hence then, the article about this google gemini flaw can create malicious gmail ai summaries was published today ( ) and is available on Live Hacker ( Middle East ) The editorial team at PressBee has edited and verified it, and it may have been modified, fully republished, or quoted. You can read and follow the updates of this news or article from its original source.
Read More Details
Finally We wish PressBee provided you with enough information of ( This Google Gemini Flaw Can Create Malicious Gmail AI Summaries )
Also on site :