Search
Get in Touch
News

A Google Gemini security flaw let hackers use calendar invites to steal private data

TechRadar
TechRadar
  • Researchers discover Gemini AI prompt injection via Google Calendar invites
  • Attackers could exfiltrate private meeting data with minimal user interaction
  • Vulnerability has been mitigated, reducing immediate exploitation risk

Security researchers found yet another way to run prompt injection attacks on Google’s Gemini AI, this time to exfiltrate sensitive Google Calendar data.

Prompt injection is a type of attack in which the malicious actor hides a prompt in an otherwise benign message. When the victim tells their AI to analyze the message (or otherwise use it as data in its work), the AI ends up running the prompt and doing the actor’s bidding.

At its core, prompt injection is possible because AIs cannot distinguish between the instruction and the data used to execute that instruction.

Abusing Gemini and Calendar

So far, prompt injection attacks were limited to email messages, and the instruction to summarize, or read emails. In the latest research, Miggo Security said the same can be done through Google Calendar.

When a person creates a calendar entry, they can invite other participants by adding their email address. In this scenario, a threat actor can create a calendar entry that contains the malicious prompt (to exfiltrate calendar data) and invite the victim. The invitation is then sent in the form of an email, containing the prompts. The next step is for the victim to instruct their AI to check for upcoming events.

The AI will parse the prompt, create a new Calendar event with the details, and add the attacker, directly granting them access to sensitive information.

“This bypass enabled unauthorized access to private meeting data and the creation of deceptive calendar events without any direct user interaction,” the researchers told The Hacker News.

“Behind the scenes, however, Gemini created a new calendar event and wrote a full summary of our target user’s private meetings in the event’s description,” Miggo said. “In many enterprise calendar configurations, the new event was visible to the attacker, allowing them to read the exfiltrated private data without the target user ever taking any action.”

The issue has since been mitigated, Miggo confirmed.

Via TheHackerNews

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.

Read more @ TechRadar

Previous article
The ‘Invisible’ Revolution: Why This Might Finally Be The Year We Ditch The Screen
Next article
Close-up pictures of AMD’s only branded PC have emerged, and I cannot believe that it is so small – Ryzen AI Halo sits comfortably in the palm of one’s hand and has all the connectors you can expect, but no Windows
TechRadar
TechRadar

Latest posts

How to Make a Killing is a rare misfire for A24 — a serial killer story should not be this boring

TechRadar - 0
Read more @ TechRadar

The starter you pick in Pokémon FireRed and LeafGreen means a lot more than you might think — here’s why you need to choose...

TechRadar - 0
Read more @ TechRadar

Digg’s open beta shuts down after just two months, blaming AI bot spam

The Verge - 0
It's only been a year since Digg founder Kevin Rose, Reddit cofounder Alexis Ohanian, and a few others announced the link-sharing site would relaunch,...

Trump Mobile is just one in the crowd of conservative carriers

The Verge - 0
Where's the Trump phone? We're going to keep talking about it every week. This week, I wanted to see how Trump Mobile stacks up...

Microsoft’s Copilot AI assistant is coming to current-gen Xbox consoles this year

The Verge - 0
Xbox is getting ready to launch its Gaming Copilot AI assistant on "current-generation consoles" this year, according to a report from GamesRadar. Sonali Yadav,...

Spotify tests letting users directly customize their Taste Profile

The Verge - 0
Less slop please. | Image: Spotify Spotify Premium users in New Zealand will be the first to experience the service's latest personalization feature. The company...

States’ anti-monopoly case against Live Nation continues Monday

The Verge - 0
The Live Nation-Ticketmaster trial is back on. Dozens of states are expected to move forward with their claims against the company's alleged concert industry...

The MacBook Neo is Apple’s most repairable laptop

Engadget - 0
Apple's cheapest laptop is also its most repairable. iFixit gave the new MacBook Neo a 6/10 repairability score. Although that number would only be...

Nothing updates its AI app with semantic search and a new way to track events

Engadget - 0
In the mad dash many companies have made to incorporate AI features into their phones, Nothing arrived at one of the better ideas with...

Adobe agrees to pay settlement for making its subscriptions hard to cancel

Engadget - 0
Adobe has agreed to pay the US government $75 million to settle its lawsuit over the company's allegedly harmful approach to subscriptions. The suit...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!

The AIVAnet is a collector and classifier of app news articles and online technology news, which works automatically by collecting and collating the RSS feeds from popular sites (IOS news feed,latest tablet news, etc.).

The articles deal with mobile app reviews, especially with android reviews, and IOS. One of the central thematic axes is also the comparisons. You can find articles with tablet reviews, comparisons and mobile OS systems or mobile OS stats.

We also provide some of the most popular app news express, for android and IOS or windows phone. The online technology news that you can find in our pages are just opinions and ideology, allowing you to see how different news agencies present the same news.

AIVAnet is supported by Cloud Services Store

About Us

© AIVAnet | All rights reserved